Official Sightless Discussion

yosef604 · September 17, 2024, 8:16am

I found root creds in keepass, is that a rabbit hole?

puritycontrol7 · September 17, 2024, 4:09pm

This was a very peculiar experience indeed.

deepuru · September 17, 2024, 7:47pm

If the entry point is from the ( sqlpad) it’s just the starting line

ambr3ak · September 18, 2024, 1:08pm

Has anyone encountered an ECONNREFUSED error while exploiting the CVE? I tried using a public RCE exploit I found on GitHub, which generates a shell, but when I attempt to execute it myself using Burp, I keep receiving an ECONNREFUSED error

deepuru · September 18, 2024, 1:43pm

Yep it’s normal you have to adapt the payload

mojitos · September 18, 2024, 8:00pm

alleged f***** entry point but i cant for the life of me find an admin panel, only a notice that the domain isnt configured. did somebody vandalize or am i missing something?

Arsid · September 18, 2024, 8:21pm

Please tell me how to forward ports from the machine. I do ssh -L port_form_me:localhost:port_machine user@ip but it doesn’t work.

deepuru · September 18, 2024, 9:52pm

For exemple :

ssh -L 9999:localhost:8080 user@domain.htb

→ add bla.domain.htb at the end of 127.0…1 on /etc/hosts on your working machine

→ go to your navigator web

http://bla.domain.htb:9999/

It’s a basic setup for ssh tunneling

You can also use tool like chisel or ligolo For easy setup like this or more complex structure

Arsid · September 19, 2024, 7:42am

Thanks, I will definitely try it today

gl0b0 · September 19, 2024, 3:46pm

This is where I am at. I have root in container and a cracked pass from shadow but cannot for the life of me figure out the next step to escape.

deepuru · September 19, 2024, 6:54pm

That’s the point you don’t need to escape, you’ve the credentials just use them

The answer is in the nmap scan you’ve done at start….

bidibidigugu · September 19, 2024, 7:32pm

I know what I need to do in the admin panel(D-T-s) but I don’t know which ports to add.

Romullus · September 20, 2024, 2:10am

Has anyone fixed the “Domain not configured”?

pointy · September 22, 2024, 2:03pm

I am stuck after getting the rev shell, any tips where I should go next? I tried linpeas but I cant find anything, nothing in the home directory only a dir called “m******” and the root is empty, am I in the right place? Did I overlook something, help :,)

Croissant · September 22, 2024, 2:42pm

you did, re read this discussion then re read your linpeas result, the hint was given multiple times

pointy · September 22, 2024, 2:46pm

Found it just now, I should’ve paid more attention

7Tenths · September 23, 2024, 3:22pm

Work out what type of hash it is that might?

derco0n · September 26, 2024, 1:38pm

i got an intial access but it turned out to be a whale jail which won’t let me do much.
In its shadows however, i found something i fed the cat with (it liked just r** not m**, maybe i’m missing the correct recipie) and another thing which could be used with the pad. Using the pad i found some more i could feed the cat with.
none of those led to an open door on the 2 ports starting with “2”.
Reading through the previous messages one could assume for more ports somewhere…
I really need a nudge to carry on. thanks

derco0n · September 26, 2024, 2:37pm

replying to my self: turns out john sees things a cat doesn’t

kurogai · September 27, 2024, 2:06pm

The root part is not that easy for a easy box, but here we go

Topic		Replies	Views
Official Resource Discussion Machines	153	4553	November 23, 2024
Official OnlyForYou Discussion Machines	186	12443	September 7, 2023
Official Trick Discussion Machines	346	19839	December 23, 2022
Official Sea Discussion Machines	370	12725	December 19, 2024
Official Undetected Discussion Machines	62	5610	June 27, 2022

Official Sightless Discussion

Related topics