Official discussion thread for Administrator. Please do not post any spoilers or big hints.
1 Like
Hi everybody,
any hints after initial foothold? I’m wondering about the possible lateral movement.
Good luck! 
If you need help DM me 
4 Likes
Thank you very much I’ll try harder for a while and if I’ll stuck - I’ll DM you.
Currently I’m wondering if AV is blocking me or it is only my brain.
Good job with the box! Congrats!
1 Like
please i need help
where
Fun box! PWNED it! DM me for help, always happy to help
Already got michael, but cant find a way to move to the other user. Can sombody give me a hint, pls?
Could use a push in the right direction. I have a user list, tried a few things not really sure what to do from here.
Any hints for the initial access?
I’ve got both flags and neither work. I’ve changed VIP VPN servers 3 times with the same result. I’ve also reset it several times. I’ve got screenshots of my work too to prove I got them. Something is seriously broken.
Use bloodhound with the user provided
What did you do so far?
Dm me please
- Enumerated ports
- Check anonymous login on FTP
- Check smb
- Check if ldap allows enumeration without creds
- Brute RIDs
- Check RPC endpoints
- Check some usernames with kerbrute (only found one)
HTB provided a user and a password, at this point you already notice there is a AD. SO you can use bloodhound to go through. you can use bloodhound-python to it
2 Likes
Im dumb sorry I didn’t noticed that LOL
I just started the machine and didn’t noticed that HTB provides creds xdd
2 Likes