isma
January 11, 2020, 6:20pm
1
Starting the thread. 40 minutes left, good luck everyone
brueh
January 11, 2020, 7:52pm
4
could somebody please lend me some gtx1080 for those hashes
0ri
January 11, 2020, 7:59pm
5
but how did you get those hashes?
0ri
January 11, 2020, 8:00pm
6
could you please give a hint on a specific service?
brueh
January 11, 2020, 8:04pm
7
impacket againâŚ
but no chance to crack themâŚ
0ri
January 11, 2020, 8:06pm
8
did you use kerberos attack?
brueh
January 11, 2020, 8:21pm
9
âDo not require Kerberos preauthenticationâ set (UF_DONT_REQUIRE_PREAUTH).
rewks
January 11, 2020, 8:21pm
10
I donât know what stage youâre at but there is no cracking required to get user
0ri
January 11, 2020, 8:23pm
11
actually? so impacket isnt necessary?
0ri
January 11, 2020, 8:23pm
12
actually? so impacket isnt necessary?
User is fairly easy, also remember that as per âmachine submission rulesâ no heavy cracking should be required on HTB, only common passwords are accepted; if you see a hash, it either can be cracked in minutes or itâs useless.
but I am really hoping this box is not all about A**** for rootâŚmy head hurts already
0ri
January 11, 2020, 8:41pm
14
but what script from impacket have you used? canât figure it out
my scripts from impacket are giving errors.
did not had that before rolling to python3.
i have users⌠but thats all.
and yes i did a git pull
n2h
January 11, 2020, 8:52pm
16
congrats @splintercode Thatâs insane how fast you did it
rewks
January 11, 2020, 8:55pm
17
@lukeasec said:
but I am really hoping this box is not all about A**** for rootâŚmy head hurts already
If it is and you figure it out, give me a shout - Iâve been going through the docs and some on-box files for over an hour and come up with nothing
n2h
January 11, 2020, 9:00pm
18
Type your comment> @rewks said:
@lukeasec said:
but I am really hoping this box is not all about A**** for rootâŚmy head hurts already
If it is and you figure it out, give me a shout - Iâve been going through the docs and some on-box files for over an hour and come up with nothing
Thatâs where I am for userâŚlol
Type your comment> @madhack said:
my scripts from impacket are giving errors.
did not had that before rolling to python3.
i have users⌠but thats all.
and yes i did a git pull
I think I may know what youâre talking about. Had a similar issue after doing an update.
If this is your error:
Traceback (most recent call last):
File âxxxxxxx.pyâ, line 334, in
logger.init(options.ts)
TypeError: init() takes no arguments (1 given)
then edit out this line from the script:
Init the exampleâs logger theme
logger.init(options.ts)
Hope this help!
ctlfish
January 11, 2020, 9:04pm
20
Type your comment> @madhack said:
my scripts from impacket are giving errors.
did not had that before rolling to python3.
i have users⌠but thats all.
and yes i did a git pull
If you are using kali and have the packages installed it will conflict with your libs from master and make all the scripts in the repo real sad. I donât remember ever installing the package so it might be worth a double check.
opened 03:58PM - 04 May 18 UTC
closed 04:40PM - 04 May 18 UTC
Hello,
I just spun up a brand new Kali box running the latest distro, and a f⌠ull round of apt-get update/upgrade. I've installed Impacket and run `pip install .` for dependencies. However, when I run `ntlmrelayx.py` the output is:
````
Traceback (most recent call last):
File "examples/ntlmrelayx.py", line 45, in <module>
from impacket.examples.ntlmrelayx.servers import SMBRelayServer, HTTPRelayServer
File "/usr/lib/python2.7/dist-packages/impacket/examples/ntlmrelayx/servers/__init__.py", line 1, in <module>
from httprelayserver import HTTPRelayServer
File "/usr/lib/python2.7/dist-packages/impacket/examples/ntlmrelayx/servers/httprelayserver.py", line 27, in <module>
from impacket.examples.ntlmrelayx.clients import SMBRelayClient, MSSQLRelayClient, LDAPRelayClient, HTTPRelayClient
File "/usr/lib/python2.7/dist-packages/impacket/examples/ntlmrelayx/clients/__init__.py", line 3, in <module>
from ldaprelayclient import LDAPRelayClient
File "/usr/lib/python2.7/dist-packages/impacket/examples/ntlmrelayx/clients/ldaprelayclient.py", line 17, in <module>
from ldap3 import Server, Connection, ALL, NTLM, RESULT_SUCCESS, MODIFY_ADD
ImportError: cannot import name RESULT_SUCCESS
````
Result of `pip install .` is:
````
Processing /opt/impacket
Requirement already satisfied: flask in /usr/lib/python2.7/dist-packages (from impacket==0.9.17.dev0) (0.12.2)
Requirement already satisfied: ldap3>=2.5.0 in /usr/local/lib/python2.7/dist-packages (from impacket==0.9.17.dev0) (2.5)
Requirement already satisfied: ldapdomaindump in /usr/local/lib/python2.7/dist-packages (from impacket==0.9.17.dev0) (0.8.5)
Requirement already satisfied: pyOpenSSL>=0.13.1 in /usr/local/lib/python2.7/dist-packages (from impacket==0.9.17.dev0) (17.2.0)
Requirement already satisfied: pyasn1>=0.2.3 in /usr/lib/python2.7/dist-packages (from impacket==0.9.17.dev0) (0.4.2)
Requirement already satisfied: pycrypto>=2.6.1 in /usr/lib/python2.7/dist-packages (from impacket==0.9.17.dev0) (2.6.1)
Requirement already satisfied: six in /usr/lib/python2.7/dist-packages (from impacket==0.9.17.dev0) (1.11.0)
Requirement already satisfied: dnspython in /usr/lib/python2.7/dist-packages (from ldapdomaindump->impacket==0.9.17.dev0) (1.15.0)
Requirement already satisfied: cryptography>=1.9 in /usr/lib/python2.7/dist-packages (from pyOpenSSL>=0.13.1->impacket==0.9.17.dev0) (2.1.4)
Building wheels for collected packages: impacket
Running setup.py bdist_wheel for impacket ... done
Stored in directory: /tmp/pip-ephem-wheel-cache-9Yh7Zt/wheels/13/d2/47/38faf6f80eda8cedc1cf72eeb020cf0aee2559d6d71f986604
Successfully built impacket
Installing collected packages: impacket
Found existing installation: impacket 0.9.15
Cannot uninstall 'impacket'. It is a distutils installed project and thus we cannot accurately determine which files belong to it which would lead to only a partial uninstall.
````
Any thoughts to what I'm missing?
Thanks,
Brian
You can set PYTHONPATH to the repo base; I think I ended up doing both.
HTH
edit: replaced awful workaround with link to issue and more sane workaround.
P.S. when this bit me I got the same traceback and the steps in linked issue or PYTHONPATH fixed it for me