Nest

TazWake · March 24, 2020, 10:59am

Possibly the box needs a reset - the syntax you’ve shown me includes at least one command that should have returned useful data.

sh4d0wless · March 24, 2020, 10:15pm

nmap returns all ports filtered?
because of my vpn file or server or something?

JMFL · March 24, 2020, 10:47pm

something on your end i would say. I am in currently

Killygang · March 25, 2020, 1:00am

Man this box was amazing. Newbie here and had a lot of fun going through it.

lancelai · March 25, 2020, 5:13am

anyone can help me on vb to decrypt c.s**** user password. got no experience in programming.

Compilation error (line 31, col 0): ‘EncryptedString’ is not declared. It may be inaccessible due to its protection level.

mode00os · March 25, 2020, 9:28pm

Hi
I have a problem with the last task, i.e. I can’t or maybe someone can show me or suggest how to solve them with the H ** L ** p file. The file was opened by the spy program ** but I do not know what to do next because I did not have contact with programming. Of course, I have a second file H *** _ C ****** _ B *****, which is definitely needed to solve this task.

DonSerrano · March 26, 2020, 1:13pm

anyone here has any tips on running/decompiling the H**p. file on a linux machine? I have no clue how to do this… PM me

Edit: i just had to switch to a windows computer to do this for now… PMs still welcome

zaicurity · March 26, 2020, 7:11pm

So I’ve rooted it but it seems I got a big spoiler from googling something. This was a step from before I even got the user flag. I was wondering if maybe it was intended as an OSINT step but reading the comments here makes me think it wasn’t.

After going back to figure out the correct method I found the required information using the Admin rights but I don’t think I could’ve gotten this information at the intended time.

Maybe someone who did the box the fully intended way could PM me to explain that step? It’s related to some program code.

Xurfcha · March 26, 2020, 8:13pm

Rooted!
Ping me for help.

Red09Devil · March 27, 2020, 10:08am

Rooted this brainfuck machine. what a roller coaster ride it was. Thanks to @TazWake and @Skunkfoot for the help.
Ping for a nudge.

sh4d0wless · March 30, 2020, 8:32am

Anyone can help me on root part?

daemonzone · March 30, 2020, 10:19am

rooted!

Wow, the user part has been a breeze! Got C*****h very quickly, without any drugs

The root part has been really interesting, didn’t know so much about files attributes! Thanks to @VbScrub for the learning opportunity! Btw, I feel like I skipped some parts of the attack because I conveniently found how to decrypt hashes without any hassle, but probably was not supposed to be like that… :neutral:

soger · March 30, 2020, 4:55pm

Type your comment> @lancelai said:

anyone can help me on vb to decrypt c.s**** user password. got no experience in programming.

Compilation error (line 31, col 0): ‘EncryptedString’ is not declared. It may be inaccessible due to its protection level.

So, declare the variable

soger · March 30, 2020, 4:58pm

@lancelai said:
got something base64 for c.s**** user and decode using online vb decoder. But the output is just like:
}13??=X?J?BA?X*?Wc?f???c

Not a plain text?
Anyone can help me please

This is not as simple as just decode Base64. Try harder. Try to find something more.

soger · March 30, 2020, 5:02pm

Rooted. Thank you @VbScrub for the box!
Good staff to improve forensic skills ?

GokuBlackSSR · March 30, 2020, 9:57pm

I was able to get and UNC path point to an database file somewhere i think, and if i run the exe in Windows he asks for this database file… i am right?

VbScrub · March 30, 2020, 9:58pm

Type your comment> @GokuBlackSSR said:

I was able to get and UNC path point to an database file somewhere i think, and if i run the exe in Windows he asks for this database file… i am right?

you don’t need to run the executable, just look inside it

GokuBlackSSR · March 30, 2020, 10:36pm

Type your comment> @VbScrub said:

Type your comment> @GokuBlackSSR said:

I was able to get and UNC path point to an database file somewhere i think, and if i run the exe in Windows he asks for this database file… i am right?

you don’t need to run the executable, just look inside it

Sorry i explained myself badly, i look inside it exe, and i get this info “UNC path with that database file”.

need to locate this database and more info

TazWake · March 30, 2020, 10:38pm

@GokuBlackSSR said:

need to locate this database and more info

Is this for user or root? I don’t think you need to find a database for either but what you need to look for varies.

CSN · March 31, 2020, 1:28am

C̶a̶n̶ ̶a̶n̶y̶o̶n̶e̶ ̶g̶i̶v̶e̶ ̶m̶e̶ ̶a̶ ̶n̶u̶d̶g̶e̶ ̶o̶n̶ ̶t̶h̶i̶s̶?̶ ̶I̶ ̶h̶a̶v̶e̶ ̶t̶h̶e̶ ̶c̶o̶n̶t̶e̶n̶t̶s̶ ̶f̶r̶o̶m̶ ̶t̶h̶e̶ ̶"̶e̶m̶p̶t̶y̶"̶ ̶f̶i̶l̶e̶ ̶a̶n̶d̶ ̶I̶ ̶a̶m̶ ̶u̶s̶i̶n̶g̶ ̶t̶̶̶̶̶̶t̶ ̶o̶n̶ ̶t̶h̶e̶ ̶h̶i̶g̶h̶ ̶p̶o̶r̶t̶ ̶a̶n̶d̶ ̶I̶ ̶f̶o̶u̶n̶d̶ ̶s̶o̶m̶e̶ ̶i̶n̶t̶e̶r̶e̶s̶t̶i̶n̶g̶ ̶f̶i̶l̶e̶s̶.̶ ̶F̶o̶u̶n̶d̶ ̶t̶h̶e̶ ̶.̶c̶̶̶̶ ̶f̶i̶l̶e̶ ̶w̶i̶t̶h̶ ̶t̶h̶e̶ ̶h̶a̶s̶h̶ ̶a̶n̶d̶ ̶t̶h̶e̶ ̶H̶̶̶̶̶*̶P̶.̶e̶x̶e̶ ̶f̶i̶l̶e̶ ̶a̶s̶ ̶w̶e̶l̶l̶,̶ ̶p̶r̶o̶b̶l̶e̶m̶ ̶i̶s̶ ̶I̶ ̶h̶a̶v̶e̶ ̶n̶o̶ ̶c̶l̶u̶e̶ ̶h̶o̶w̶ ̶t̶o̶ ̶d̶o̶w̶n̶l̶o̶a̶d̶ ̶t̶h̶e̶ ̶.̶e̶x̶e̶ ̶f̶i̶l̶e̶,̶ ̶b̶e̶c̶a̶u̶s̶e̶ ̶t̶h̶e̶r̶e̶ ̶o̶n̶l̶y̶ ̶s̶e̶e̶m̶s̶ ̶t̶o̶ ̶b̶e̶ ̶a̶ ̶s̶h̶o̶r̶t̶l̶i̶s̶t̶ ̶o̶f̶ ̶c̶o̶m̶m̶a̶n̶d̶s̶ ̶I̶ ̶c̶a̶n̶ ̶r̶u̶n̶.̶ ̶D̶o̶ ̶i̶ ̶n̶e̶e̶d̶ ̶t̶o̶ ̶u̶s̶e̶ ̶a̶ ̶d̶i̶f̶f̶e̶r̶e̶n̶t̶ ̶t̶o̶o̶l̶ ̶h̶e̶r̶e̶ ̶o̶r̶ ̶?̶

Nvm - I see I have the file already.