Official Trick Discussion

Kutluqbeg · June 27, 2022, 11:53am

how to get admin login and password
or bypass

manuel78 · June 27, 2022, 1:39pm

In need of a hint/nudge I found that with a certain “map” I can read files but that takes a very very long time so I’m not sure that’s the right way. I have some source files as well but don’t know if I’m supposed to analyze them to figure something out and I also have two subs don’t know if there is more or not.

Nevuer · June 27, 2022, 3:43pm

FOR EVERYONE:

There are 3 subdomains

If you’re stuck, you’re probably missing one

SPYer · June 27, 2022, 5:14pm

I am stuck on getting the foothold. Through dns, i got one subdomain. But dont know what to do further.
I have done url fuzzing and even tried smtp recon, but found nothing. Please provide me a nudge

niellxm · June 27, 2022, 5:30pm

found subdomain, now stucked on admin panel tried default credentials but not worked any hint pls…

howtoask · June 27, 2022, 5:46pm

I found a domain through DNS service. However, I can’t find a valid subdomain using the vhost. Can anyone send me a DM?

0xC0rS · June 27, 2022, 6:49pm

Can someone give me some tips iin how to get the L* I , found two types of X**, “S * Li” , but cannot get the L* I and cannot keep looking for the next subdomain.
I’ve tried to enumerate DNS as much as i could but only found 2 subdomains, so maybe with the L* I I can get what i want.
THXX

Manissad · June 27, 2022, 8:20pm

I am stuck on the ad*** panel got the creds as well but don’t know where to get from there, can someone drop me the hints

Zemahseri · June 27, 2022, 8:39pm

You can try “default” configuration files.

Zemahseri · June 27, 2022, 8:40pm

There are lots of way to read files from the file system.

Manissad · June 27, 2022, 8:42pm

is it using ***map?

Zemahseri · June 27, 2022, 8:49pm

I didn’t use that tool but the technic was the same.

EkinSs · June 27, 2022, 10:17pm

I can’t find anything

Ximon · June 28, 2022, 9:41am

hello, i’m adm********** on the adm** page, but i don’t know what to do know.
someone could please give me a hint on how to precede ?

Nevuer · June 28, 2022, 11:08am

This admin page is a rabbit hole, find anothers subdomains.

lurto · June 28, 2022, 11:17am

used diffrent tools and diffrent pretty big wordlists for the DNS fuzz found nothing. Any leads ?

Nevuer · June 28, 2022, 12:04pm

Other “pre” subdomains. may exist.

HackSh00t · June 28, 2022, 12:21pm

I think I got user access an unintended way. People here talking about an admin page in the p****** web, and I didn’t have to even touch that web to get user.

lurto · June 28, 2022, 12:56pm

i’m sorry but I never heard of a “pre” subdomain

JacobE · June 28, 2022, 2:26pm

Have you enumerated all ports?