anyone used ys******l on kali, if you managed a way to do that on kali please PM me
Same here! I am looking for a way to construct the payload without resorting to setting up a Windows VM (is compilation required too?). Please PM if anyone knows how to do it in kali.
Hello,
Yes , it’s possible using wine and installing mono in wine as described below:
You must do the installation on GUI , so don’t try it in console
Read carefully , you don’t need to install mono using apt install
Hello im have problem with get shell, server get from my server files and in next step i can’t run it on the server. Anyone has any tips to get shell? Im talking about user part.
Hi, just like to get some help with initial payload for JSON, i am able to ping back, so I know that works, however not able to execute other commands which I can do locally. PM please
Able to use ys*******.n** to get ping to work but not getting any joy from next efforts to move a useful file over and execute for a shell. Have tracked with tcpd*** but not seeing anything to help me. Would appreciate a nudge if anyone is willing to offer one.
Edit: Finally got user. I needed a nudge on syntax with ys*******.n** and got it sorted. Onto some digging into the server now that I have a shell.
Would anyone be available to assist me
Using the potatoes, I was able to grant myself group memberships but I am unable to get a reverse shell.
I’ve validated with a few folks and what I am doing should work… I’m baffled
Hi, just like to get some help with initial payload for JSON, i am able to ping back, so I know that works, however not able to execute other commands which I can do locally. PM please
When you create payload you must pay attention to quotation marks and escaping it. Im have some problem and resolve it by escaping.
Wow very interesting machine. Really want to learn why the whole foothold works, I understand it vaguely but really don’t get why it works. Great system to practice for my AWAE test coming up! Privesc was great too!
meterpreter > getuid
Server username: NT AUTHORITY\SYSTEM
meterpreter > sysinfo
Computer : JSON
@m4ng0n3l said:
Wow very interesting machine. Really want to learn why the whole foothold works, I understand it vaguely but really don’t get why it works. Great system to practice for my AWAE test coming up! Privesc was great too!
Send me a PM with which bit exactly you didn’t understand and I’ll try explain
EDIT: Ended up writing a pretty comprehensive explanation of exactly how the y******.**t part of this box works to send to @m4ng0n3l and had to put it on dropbox because HTB banned me for 15 mins when I tried to send it to him directly for some reason lol so if anyone else wants a copy of that (only AFTER you’ve got the user flag and just want to understand how/why it worked) then drop me a PM and I’ll send it over.
Got this one, after spending a day to set up the Visual Studio on a windows VM. Pure guess work that the B… header would de… Getting root was relatively easy with a spud.
been working at this machine for about half of the day now… can someone pm me and let me know what i’m doing wrong? I have an OAuth token, but can’t figure out what i need next for user