Netmon

This was a great box to learn on can’t wait for more like this to concrete in these skills

Type your comment> @TheJag said:

Type your comment> @Arrow said:

Hello all.
I am quite confused with getting the creds for the WebApp.
Not quite sure if I got the right password from the d** files and not working due to the fact that some people do constantly change the password or if I am getting it completely wrong.
Could someone offer me a piece of help?
Thank you in advance!

From what you are saying sounds like you are looking in the right place just find the right d** file (it will have the creds) and then look at the time it was saved (Trying not to give it away)

Woow, I see what you mean! Oh my, I should get myself a pair of glasses, I guess! xD
Thank you very much for helping out!

That was a pleasant machine. Too much fun! Ask you need advice.

Type your comment> @Randsec said:

So how are we supposed to launch notifications? I added a custom one to a lot of devices, but I’m not able to trigger it. Hints? Pm me please.

edit: Nevermind. I got it.

me too. Can you help me.I don’t know how to trigger notification. Please PM ME.

I click bell and edit sensor’s notification . all fail. so sad.Please PM me. thank you .

I will appreciate it if you can give a little hint how to trigger notification.

Can someone reach out so I can go into detail without saying too much on the forum. I’m right there I can tell.
Got user
I know the RCE and I got it half working, like I got stage 2 to show up even with a custom name… but not stage 1, and I can’t figure out why

Guys I can’t login to PRTG with found admin credentials. It’s an error during login.

Please stop resetting the box. I’m working on root and I’ve had the box reset at least three times in the last five minutes. If you got root, just delete your work. There’s like two items you would need to delete: one from shell, one from webapp. If you’re not working on root, there’s no reason for you to reset the box…

Anyone Help me with the Commands to get ***t.txt from the Notifications field.

I’ve got a quick question! I think I’ve done everything needed to get root. I’m just lost as to where to type the credentials in to access the root.txt on the server. These are admin credentials for the SYSTEM so typing them in the f** didn’t work. I’m so close! Would appreciate any help!

EDIT: Ahh I got it now.

Hi, how can we get a shell from ftp server? can anyone please tell me

My 2nd box. Thanks for the creator, great one! PM me if you are stuck, happy to help.
BTW.: Am I the only one, who got the root by exploiting and creating something in the box?

Guys I am stuck in the ftp shell, o know we have to use the RCE, but I am just not finding the credentials, can anyone please help me?

PM me if you need help
Especially NOOBIES

Cheers!

Tips for newbies like me:

• ls -la helps
• Look at the edit date of C* file
• CVE for privesc

Do people keep changing the password of the web app login account?

Thanks to the creator of this machine nice and very much practical scenario. Thanks.

Could i message somebody looking for a bit of advice? I’m at the point there I’m running the E***** on the admin panel and it’s generating a new user but the user doesn’t work. Just need a bit of advice.

Tips:

1. Brute-forcing, a waste of time.
2. PRTG credentials. Look at what the configuration was, but remember time has passed since then.
3. User is a no brainer. Simply look around.
4. (PRTG Command Injection ≈ Packet Storm) should guide you towards root. Good reading.
5. Only 2 of the open ports are of use.
   **** Annoyance ***** Box resets. Be patient and it usually best to try to login straight after the box reset.