Official Bizness Discussion

ff4500 · April 3, 2024, 2:52pm

Is it OK if I can’t ping or netcat host IP behind of VPN gateway?
I can ping the VPN gateway but not the host.

Looks like a problem with the routing traffic in the VPN.

$ ping 10.10.16.1  
PING 10.10.16.1 (10.10.16.1) 56(84) bytes of data.
64 bytes from 10.10.16.1: icmp_seq=1 ttl=64 time=224 ms
64 bytes from 10.10.16.1: icmp_seq=2 ttl=64 time=51.4 ms
64 bytes from 10.10.16.1: icmp_seq=3 ttl=64 time=343 ms
64 bytes from 10.10.16.1: icmp_seq=4 ttl=64 time=65.1 ms
64 bytes from 10.10.16.1: icmp_seq=5 ttl=64 time=181 ms
64 bytes from 10.10.16.1: icmp_seq=6 ttl=64 time=54.3 ms
64 bytes from 10.10.16.1: icmp_seq=7 ttl=64 time=226 ms
^C
--- 10.10.16.1 ping statistics ---
7 packets transmitted, 7 received, 0% packet loss, time 6011ms
rtt min/avg/max/mdev = 51.365/163.554/343.025/102.990 ms
                                                                                                                                                                                                                   
$ ping 10.10.11.252           
PING 10.10.11.252 (10.10.11.252) 56(84) bytes of data.
^C
--- 10.10.11.252 ping statistics ---
23 packets transmitted, 0 received, 100% packet loss, time 22508ms

Swindler · April 11, 2024, 2:20am

derby blows.

b_zy · May 1, 2024, 1:09pm

Hey SergeantSoda,

After attempting to reverse engineer the thought process of the tutorials I saw online, I found that a good strategy seemed to be grepping all files that contained the strings hash, sha, password, username, login, and admin to narrow down relevant files. Then from my inexperienced point of view, the next step would either be manually searching each of the grepped files for password/hash, or skim the grepped files and vaguely research what each file does until you get to the /derby/ folder, where it can be found online that it is a database and continue the search from there

I found that grepping for “username” and “password”" was a somewhat plausible way to come across the /opt/ofbiz/runtime/data/derby/ofbiz/seg0/c54d0.dat file, which contains the hash we are meant to find in this machine.

Hope this helps!

Cerberus · June 20, 2024, 11:56pm

Hi, how are we supposed to find the hash format ? There is no explicit documentation. Can you give me a hint please ?

Topic		Replies	Views
Official Analytics Discussion Machines	245	11617	May 12, 2024
Official ScriptKiddie Discussion Machines	451	64353	June 8, 2021
Official Compromised Discussion Machines	210	22193	January 25, 2021
Official Corporate Discussion Machines	25	2628	December 17, 2024
Official Sandworm Discussion Machines	269	10679	November 17, 2023

Official Bizness Discussion

Related topics