Maybe check the encoding? I got it to work, send me a DM
If you are using firefox, go try on chrome. It worked for me on chrome. Firefox for some reason, gave me quite a rage!!!
i need help with nonce thing, trying for few hours and each time unauthorized !!! is the machine bugged or what
EDIT: i am an idiot !
I got a question, I was able to found the c*** subdomain because of a nudge, but I wanted to know how you guys found it, It’s impossible to bruteforce it since we need to enter this domain before in the /etc/hosts file right ? so how can you enum on this ?
Thanks
Is the created account for permissions suppose to hit a denied permission page when attempting to login into the new account?
Nevermind found a different CVE that bypassed that step.
can someone help where are default creds
If you use a particular wordlist with gobuster then it will reveal the subdomain!
It’s all about enumeration, if you can’t find something on your initial search you got to dig deeper.
yes i have too
I’m sorry i cant seem to find the right list… i’m using rockyou
…
for what ?
I followed a related Medium article to bypass duplicati, but I still get an Unauthorized error. I’m not sure what I did wrong.
Thanks gobuster solved my problem
I cannot find the right m***** key to log in to the machine. I grep it and I found one in pki folder, but it didn’t work. Any hint?
Anyone else think root was a bit complex or was it just me ?
Hi, can you help me, please?
Same here. Curious to know if anyone got a shell?
(post deleted by author)