Official Acute Discussion

ihatetom · March 11, 2022, 9:21pm

What I’ve learned so far, NOTHING is there by mistake. I had to use every bit of information from enumeration.

cptphil · May 7, 2022, 2:36pm

hi any tips for initial enumeration i am stuck

cptphil · May 8, 2022, 7:32pm

did you add it to the host file?thats why it wasnt working?

ihatetom · May 9, 2022, 2:45pm

read the documentation

cptphil · May 9, 2022, 5:37pm

i ve red it, but the webpage with the folders its not working to me /S****/…

ihatetom · May 9, 2022, 8:26pm

I’d suggest asking some of this on Discord. Sounds like you’re going down a path too early.

kp1994 · May 11, 2022, 2:11pm

where are you stuck?

til · May 12, 2022, 5:56pm

I’m stuck with priv-esc for quite some time. Is there any way to bypass av? I also noticed the ip, but it feels hard to understand what’s going on.

L33Tfour0four · May 13, 2022, 10:03am

had some ‘fun’ on this one - found little to start with and ended up going way in the wrong direction until I found I had spelling error in my hosts file but still not sure the site is working as it should (eg no pictures working but I can browse to them directly and some pages from the downloaded file that return 404 - should they be doing this?). Found the PS console and the ‘S******’ folder (which returns a 500) but not getting much from enum of WP. If thats all as expected can anyone expand on the w0rd w0rd clue as I’m running out of ideas…

til · May 13, 2022, 4:03pm

can you give me a hint on lateral/PE ?

L33Tfour0four · May 13, 2022, 4:05pm

Just started my enum again and I’m now getting a load of the stuff i expected returned… think something was knackered before…

kp1994 · May 13, 2022, 4:27pm

Where have you reached exaclty? Dm

cptphil · May 15, 2022, 11:45am

hi i have the path /S****/I******** but i cant reach it, any help please

kp1994 · May 16, 2022, 8:59am

Have you added the domain name to /etc/hosts?

kheludros · May 30, 2022, 11:42pm

404 for me, rest of site loads fine w/ the hosts file updated.

SirHackxAlot · June 3, 2022, 2:11pm

Any update on this. hosts file has a******.a****.l****
I can hit MS PWSH login
Can not hit the /S****/I********

cptphil · June 3, 2022, 7:09pm

no mate

trevorphillips · June 10, 2022, 4:52pm

I’ve been stuck for a while at privesc.

Found the navy-blue console and discovered that R** session is active, so I’m guessing I need to take a look what is going on there. So far tried:

M*******r reverse shell (which I think has the functionality I need) - dies immediately after connecting
E****e reverse shell (has the same functionality) - stager for reverse connection is blocked by AV even when running from U** folder
Take a sc****** using a Powershell command and send results through a basic reverse shell (these work) but only see a black rectangle

Would appreciate some pointers.

binho1337 · June 11, 2022, 12:09am

Rooted:

nice Machine if anyone need a hint DM me.

binho1337 · June 11, 2022, 5:38am

strange i have no problem with meterpreter only put in that folder exclusion by AV and run with no problem at all.

@trevorphillips send me a msg and i will try help you with reverse shell