Just got this!
Thank you @MinatoTW for this box, it was super realistic and fun!
As other have said:
Foothold: you don’t get/won’t need a shell on the box for foothold
User: Enumerate all you can. Grab every username you can find. If you happen to find any passwords, the internet is your friend.
Root: I got stuck here for 3 days. Reading the comments really helped. No exploitation needed here, no guessing required. It’s all in your memory and environment.
Feel free to pm for hints!
Need a hint on a user please
Got probably 2 users and 3 passwords(from hashes)
Tried doing r***p.py and got 315 endpoint (WTF even is that?) and also tried lk****d.py, nothing.
help
UPD: got 9 users now, saw 3 share-folders, but no clue what to do next. PM me please
Did this machine get decommissioned ?
Type your comment> @0X44696F21 said:
Did this machine get decommissioned ?
Yes, this machine is now retired.
Got user and rooted. I learned a lot on this machine. Word of advice to myself and others POWERSHELL. It is extremely helpful to learn how it works.
Done, was a pretty good challenge ^^ if anyone need help pm me
Is it normal that I can’t list any process or programs? Everything returns access denied, or the command just shows error.
Can anyone give me a hint on getting the winrm app to work? It is constantly giving me a connection timeout issue even after box reset.
Any hints would be greatly appreciated on getting this working. Or an alternative way.