Official Mailing Discussion

lemon_x_mint · May 30, 2024, 9:13am

Hi, I’m in the same situation, actually.
The only one I’ve not tried is the p** one, maybe that’s the problem?
Or am I missing some steps?

danipass · May 30, 2024, 10:31am

same, maybe I’m using them wrong, any hint?

C1775scow · May 31, 2024, 4:30pm

Just the same as multiple people here, I’ve use the L** to get ****.ini file and cracked the hashes. Used it to login to I but not seeing any messages. Given it a few minutes like some previous comments say and I’ve got nothing. Anyone able to give a nudge. Ive seen some saying to lookup CVE for the service trying to exploit but idk if im trying to exploit IMAP, SMTP, SMB or something else.

nikko23 · May 31, 2024, 7:39pm

Dm me

0xOxyDe · June 3, 2024, 8:40pm

Locked on privesc . Someone can help ? After checking Scheduled task , unquoted paths, dont knwo what can i do , thanks

xJz · June 4, 2024, 9:50pm

I’m struggling with N*** , any hint for url ? I’m guessing is about number of \ but I’ve tried so many combinations

sk_dutta · June 5, 2024, 8:18am

If anyone is stuck for long i can help you with the walkthrough, if required

rencoud1992 · June 5, 2024, 9:38am

I know there able to exploit L** with d*****.php to reveal the information, but is there any way to list the current path, and list what file have current path?

sivakrishna02 · June 5, 2024, 3:07pm

i just need a basic hint. I have gone thru the instructions document but using that over my mail client doesn’t yield anything.

7Tenths · June 5, 2024, 9:25pm

Once you sent an email, wait a bit.

rencoud1992 · June 6, 2024, 1:55am

Once I use L** and get the ****.ini , crack the Hash, what is my next step?
I’m confusing right now.

rencoud1992 · June 6, 2024, 2:51am

This one can found on the Nmap result ?

elcafe · June 6, 2024, 3:58pm

good learning experience.

atutko · June 6, 2024, 9:10pm

I haven’t looked at this in a bit but I believe the main webpage calls out what mailing server is being used. So then the question would be were there any CVEs for that software.

uns33na1r · June 7, 2024, 8:21pm

Having issues with connecting via mail… unsure why, reading the directions and everything… even tried telnet login…

hckers007 · June 8, 2024, 5:50pm

Hey I did use LFI and then i got stuck…

Bozo04 · June 12, 2024, 9:57am

Hello,
I am not able to captures H***** using R*** tool. All my commands and everything are correct. Is there anything that I can go?

bbzrta · June 14, 2024, 7:03am

right, I got whats needed to gain foothold, and i stumbled across the CVE used for this box. but its frustrating me because i dont know how the people talking about that CVE got it in the first place. can someone DM me and expalin how they found out what CVE to use please?

thanks

Bozo04 · June 14, 2024, 10:44am

Interesting one to solve

Yanited ! Yanited ! Yanited !

blu3r3d · June 16, 2024, 1:46pm

Hi I was able to get the user hash but I don’t understand why the script exploit worked since the exploit involves the user clicking on a link. If anyone has an understanding please dm

Topic		Replies	Views
Root Jeeves Machines	6	1788	December 29, 2017
Official Response Discussion Machines	13	1709	January 1, 2023
Official Attended Discussion Machines	68	6164	May 3, 2021
Official Undetected Discussion Machines	62	5611	June 27, 2022
Official Outdated Discussion Machines	70	7950	December 14, 2023

Official Mailing Discussion

Related topics