Official Bizness Discussion

HTB Content Machines
265

Is it OK if I can’t ping or netcat host IP behind of VPN gateway?
I can ping the VPN gateway but not the host.

Looks like a problem with the routing traffic in the VPN.

$ ping 10.10.16.1  
PING 10.10.16.1 (10.10.16.1) 56(84) bytes of data.
64 bytes from 10.10.16.1: icmp_seq=1 ttl=64 time=224 ms
64 bytes from 10.10.16.1: icmp_seq=2 ttl=64 time=51.4 ms
64 bytes from 10.10.16.1: icmp_seq=3 ttl=64 time=343 ms
64 bytes from 10.10.16.1: icmp_seq=4 ttl=64 time=65.1 ms
64 bytes from 10.10.16.1: icmp_seq=5 ttl=64 time=181 ms
64 bytes from 10.10.16.1: icmp_seq=6 ttl=64 time=54.3 ms
64 bytes from 10.10.16.1: icmp_seq=7 ttl=64 time=226 ms
^C
--- 10.10.16.1 ping statistics ---
7 packets transmitted, 7 received, 0% packet loss, time 6011ms
rtt min/avg/max/mdev = 51.365/163.554/343.025/102.990 ms
                                                                                                                                                                                                                   
$ ping 10.10.11.252           
PING 10.10.11.252 (10.10.11.252) 56(84) bytes of data.
^C
--- 10.10.11.252 ping statistics ---
23 packets transmitted, 0 received, 100% packet loss, time 22508ms
266

derby blows.

267

Hey SergeantSoda,

After attempting to reverse engineer the thought process of the tutorials I saw online, I found that a good strategy seemed to be grepping all files that contained the strings hash, sha, password, username, login, and admin to narrow down relevant files. Then from my inexperienced point of view, the next step would either be manually searching each of the grepped files for password/hash, or skim the grepped files and vaguely research what each file does until you get to the /derby/ folder, where it can be found online that it is a database and continue the search from there

I found that grepping for “username” and “password”" was a somewhat plausible way to come across the /opt/ofbiz/runtime/data/derby/ofbiz/seg0/c54d0.dat file, which contains the hash we are meant to find in this machine.

Hope this helps!

1 Like
268

Hi, how are we supposed to find the hash format ? There is no explicit documentation. Can you give me a hint please ?