Europa Initial Foothold

Hi Guys, I am trying to get the initial step forward on Europa, none of my usual enum has given me anything to work with. :frowning: Can I get a nudge in the right direction.

@andrewh said:
Hi Guys, I am trying to get the initial step forward on Europa, none of my usual enum has given me anything to work with. :frowning: Can I get a nudge in the right direction.

Hi andrewh,
as you know enumeration is the key. Nmap is your friend:)

Thanks @yolchuyev Iā€™ve found 3 ports open. Should there be more?

@andrewh said:
Thanks @yolchuyev Iā€™ve found 3 ports open. Should there be more?

Thats good , for now think about what kind of information you can get about those ports via nmap. Good luck bro.

First i use normal fast scan ā†’ nmap -F ip
Then i use -A option for particular port ā†’ nmap -A -p22,80,443 ip

you will get a very good information from that scan

Do you need to use hashcat on Europa?

I think Iā€™ve found the info Iā€™m meant to from one of the ports but I donā€™t know what to do with it! :frowning: i canā€™t seem to navigate to it to investigate! This machine has me completely stumped!

@andrewh said:
I think Iā€™ve found the info Iā€™m meant to from one of the ports but I donā€™t know what to do with it! :frowning: i canā€™t seem to navigate to it to investigate! This machine has me completely stumped!

You can pm me.

@andrewh said:
I think Iā€™ve found the info Iā€™m meant to from one of the ports but I donā€™t know what to do with it! :frowning: i canā€™t seem to navigate to it to investigate! This machine has me completely stumped!

Research how your computer knows where to look for addresses on the internet when you make requests. Nudge nudge.

Thanks Guys I made it in to the portal after literally a whole day of banging my head against the wall and realising I know nothing haha.

Spoiler removed - Arrexel

Spoiler removed - Arrexel

Please suggest what to do after bypassing the Admin Portal.

Stare at Burp for several hoursā€¦ :slight_smile:

@likwidsec Exactly xP

@likwidsec @CodingKarma Haha the box name should have been called ā€œBurpingā€ or something similar. I have never spent so much time in burp. It was awesome though as I now feel loads more confident using it for other things!!

@andrewh this is the whole concept of elite boxes the outta box thinking and teaching us something that we donā€™t see in usual labs where you just pull MSF and let it work for you, europa was really amazing tells you how to burp properly indeed and for those who are stuck BURP is the hint :bleep_bloop:

@andrewh for sure. I agree with @CodingKarma, Europa most definitely my favorite box Iā€™ve worked on here so far. It felt a lot more ā€œreal worldā€ and I learned a ton about how to use Burp.

For eurpoa should DNS be resolvable when on the VPN (e.g. europacorp.htb)? When I try these types of domain names I get unknown host errors, which leaves me unsure how to get to all of the resources

@r4z3r said:
For eurpoa should DNS be resolvable when on the VPN (e.g. europacorp.htb)? When I try these types of domain names I get unknown host errors, which leaves me unsure how to get to all of the resources

In what order does your computer look to try to resolve hostnames?