kotarak

princeade · November 13, 2017, 7:43pm

@x0xxin nudges…any nudge?

i also noticed kotarak and haircut(retired machine) seem same

A113n · November 20, 2017, 5:36pm

if you’re n00b like me, I suggest you stay off this machine, if you’re stubborn like me and like to bleed, then carry on, put your life on hold. With some nudges I got root after 4 intense days on this box.

peek · November 20, 2017, 9:21pm

when you are sysadmin, you like to read some specific files…from that…search an exploit.

paciock · November 25, 2017, 12:47pm

i got native meterpreter, any hint on how to proceed?

Agent22 · November 25, 2017, 1:38pm

@paciock said:
i got native meterpreter, any hint on how to proceed?

take a look on user’s directory ll find something interesting …

paciock · November 25, 2017, 1:57pm

@Agent22 said:

@paciock said:
i got native meterpreter, any hint on how to proceed?

take a look on user’s directory ll find something interesting …

i found something but i think is not working or i am using 'em in the wrong place

paciock · November 25, 2017, 5:00pm

ok, i was wrong, the place was right

peek · November 25, 2017, 5:29pm

better use nc than meterpreter

ipatchcables · November 28, 2017, 3:16pm

Any nudge on initial shell? I believe I found the vuln. just trying to call my shell. PM please?

A113n · November 29, 2017, 3:03pm

what else can you do, can you look ‘inside’ the machine instead of focusing on getting a shell (assuming you’re not in any portal etc.)

blobbo · December 2, 2017, 9:36am

The priv esc side is doing my head in… It was all making sense till I hit a brick wall…

mrpotato · December 6, 2017, 11:36pm

@paciock Any nudges using those credentials? I feel like I’ve used them everywhere possible without success.

paciock · December 6, 2017, 11:48pm

@mrpotato said:
@paciock Any nudges using those credentials? I feel like I’ve used them everywhere possible without success.

sent pm

briyani · December 7, 2017, 7:16am

finally…

Finished this with lot of blood shed. @A113n
Blood Blood Blood. Lot of Blood Shed !

MrWest3r · December 21, 2017, 2:04pm

Hi people. I have been hitting this machine with everything i can think of. I have found which ports are opened and dirbusted them THOROUGHLY. I see that certain http-methods are allowed and i have tried to exploit them with no success. I have tried to bruteforce the to***t login as well with no success. I have also tried to exploit the “Private Browser”-form and have gotten access to /server-status, but nothing else.
Can anyone give me a nudge in the right direction? Any hint is appriciated.

b1zsv9 · December 22, 2017, 7:38am

I know user password for windows. But I dont know how to use it. Can you give me hint, please.

Agent22 · December 22, 2017, 7:51am

@b1zsv9 said:
I know user password for windows. But I dont know how to use it. Can you give me hint, please.

maybe Kotarak is not a window machine … u need to switch user with a password …

likwidsec · December 24, 2017, 12:59pm

@MrWest3r said:
Hi people. I have been hitting this machine with everything i can think of. I have found which ports are opened and dirbusted them THOROUGHLY. I see that certain http-methods are allowed and i have tried to exploit them with no success. I have tried to bruteforce the to***t login as well with no success. I have also tried to exploit the “Private Browser”-form and have gotten access to /server-status, but nothing else.
Can anyone give me a nudge in the right direction? Any hint is appriciated.

If you’ve seen the status, you have the answer.

beginner2010 · January 3, 2018, 5:26pm

Del

beginner2010 · January 4, 2018, 1:03pm

Can anyone PM a hint on priv esc to root?