Forest

opening for forest

anyone got a foothold besides the quick user ?

nope just got a list, am looking harder :wink:

wtf Who gave 20 points to this box

Any hints on root for this ?

Any nudges for user?

I hate windows boxes, really hate them, I’m very weak against windows, I think I need to practice more.

I think I enumerated the l**p service for at least an hour now. Can’t find anything. Any nudges for user please?

I’m really struggling to find a way to start on this box… Can someone help me out in the right direction?

I found … on mf sm l***n

I only got the list of the user Accounts on this machine yet. Stuck on where to go next.

I started brutef** with 7 u***s

Type your comment> @rholas said:

I started brutef** with 7 u***s

I dont think the user flag is based on bruteforcing at this point.
Anyways Good Luck

Type your comment> @rbt said:

Type your comment> @rholas said:

I started brutef** with 7 u***s

I dont think the user flag is based on bruteforcing at this point.
Anyways Good Luck

but all open ports need us* and pass*

Type your comment> @rholas said:

Type your comment> @rbt said:

Type your comment> @rholas said:

I started brutef** with 7 u***s

I dont think the user flag is based on bruteforcing at this point.
Anyways Good Luck

but all open ports need us* and pass*

I’m using rid***m.py to bruteforce all of them rn

Type your comment> @rbt said:

Type your comment> @rholas said:

Type your comment> @rbt said:

Type your comment> @rholas said:

I started brutef** with 7 u***s

I dont think the user flag is based on bruteforcing at this point.
Anyways Good Luck

but all open ports need us* and pass*

I’m using rid***m.py to bruteforce all of them rn

same with sm lgi with msf

also checked armie but not found any e*

The comments so far are very encouraging, was planning to start working on this machine tonight ?

This github has a usefull tool to get to user

Type your comment> @Davincible said:

This github has a usefull tool to get to user
GitHub - SecureAuthCorp/impacket: Impacket is a collection of Python classes for working with netw

if you mean for l*****d.py … I already got all the users using another script.
But every port requests password authentication