Finally rooted!
don’t know why pyhton module doesn’t work correctly… i’ve lost a day!
Type your comment> @rootoor said:
why can i only find two users and passwords?
There is third one also on the same page you have to do deep analysis…
And also think creatively…
Type your comment> @Sameasname said:
Type your comment> @D4nch3n said:
So I’ve gotten 3 usernames and 3 passwords but still cannot connect to high port…do we need more?
I had same issue but was nudged to look at lo******d from impacket
Could I please get a nudge here? I’ve tried using this but just getting errors 
Edit: Nevermind, just had to think it through, I’m a scrub.
Rooted… Really fun box, very straight forward. PM for a nudge.
Find Where they ?
Few tips!
Overall: Dont think too much. Google alot. Basic enumeration is the key 
Basic commands enough!
User: Creds are in front of you, read carefully. I wasn’t, so lost a lot of precious time searching the most obvious. Later do the ■■■■ and enum services. Remember it’s a Windows box.
Root: Look what you got, and google for what are you looking for! Remember simplicity, don’t be ultimateHax00r Basic commands enough once again. I lost a lot of time trying to do it in “haxx00r” style haha 
Nice and easy box. Thank you @MinatoTW for the quick solve – I’ve enjoyed almost all of your boxes so far (except for Ghoul, I’m sorry 
)… This was a great way of introducing a Windows box to newer users with less environmental familiarity, so I applaud you for that.
Per usual, my hints:
user:
Standard web enumeration isn’t quite enough. Check out what other ports are open and enumerate a bit further. Once you’ve collected everything you need, you can use a common Windows protocol to get your shell. The previous comments in this thread should already be enough to figure out what I’m referring to here (though, I’ve heard some people on free servers have had a bit of trouble with it).
root:
Check what processes are running. There’s one in particular that’s interesting. Can you get anything from it? Maybe see what it can give you and go from there.
Stuck on cracking $1 pass, any hint?
Root owned.
I’m not sure what people meant by “weird processes running” or “look for output” but in my case what would have saved me some time is this piece advice: “If you find a password, make sure to try it everywhere !!”
Feel free to PM me for hints if you like, thanks to the creator for a fun machine.
What a wonderful machine
For user: the password is right in front of you. You just need to find the username.
For root: look for what is running and extract its data.
The sha-256 seemed useless for me since it is unbreakable in a reasonable time, so I’m not sure why did someone mention it in here …
Type your comment> @Ryan412 said:
What a wonderful machine
For user: the password is right in front of you. You just need to find the username.
For root: look for what is running and extract its data.
The sha-256 seemed useless for me since it is unbreakable in a reasonable time, so I’m not sure why did someone mention it in here …
The SHA-256 is merely a pointer… I wouldn’t bother trying to crack it. Look at the running processes on the machine instead.
.
Root was fun, finding user was a pain checking out all the credentials.
guys, need help for user, I’ve usernames and passwords but it won’t allow me to login on higher port.
My first own on both user and root!
User: This is the real struggle. Just dont give up, you are probably closer than you think.
Root: I may have done root wrong. It was too easy.
Spoiler Removed
Rooted , that was a good box.
Learned a lot about Power Shell. The below will help in searching all files to get something useful.
Get-ChildItem -Path (Your Path) -Recurse -File | Select-String (Keyword)
Rooted! Nice box.
User is all about enumeration.
Root is straightforward.
Hints in the current thread are sufficient to get you both.
Type your comment> @D4nch3n said:
for root, is the k***.** file a rabbit hole? There doesn’t seem to be a l****.**** file to go with it…
I have the same problem, only found the k***.b file, did not find the l**.*n file, how to get the information I need?