I’ve got initial PSH foothold in the machine , now i’m struggling to get a reverse shell ( not PSH shell) on the machine. The AV keeps blocking me, can anyone point me in the right direction? I’m not too experienced with PWSH …
To get first user, enumerate and you will see it clear as day. Don’t get thrown off it it doesn’t work at first, SysAdmins and Users are lazy about keeping up with those passwords!
Once you’re in as first user, user flag should be in plain sight. To escalate to second user, try to find files and directories not in plain sight.
Once second user, find out what special privs he/she has and google around.
Finally got it! Root was really hard for me (i’m not a windows guy ;)). But i have to admit that once you got all the pieces together, It’s pretty straigth forward.
Need a nudge, I am connected to the system via a certain client with a user and password found with a certain tool. Looking through the available directories there doesn’t seem to be much useful information. But thats about where I am stuck.
Need a nudge, I am connected to the system via a certain client with a user and password found with a certain tool. Looking through the available directories there doesn’t seem to be much useful information. But thats about where I am stuck.
Look deeper, is there something there that you might not be able to see?
It’s there… keep looking.
WOOO!!! Thank you all for the help for getting to root…
Note: If you read this forum topic enough you’ll find more than enough information in it to get to User 1, User 2 and on to root! Just takes OSINT of this as well as enumeration of the machine and knowledge of the tools at your disposal!
Can anyone PM me a hint about root? I’ve spent a few hours trawling through services, looking trying to find any service vulnerabilities, looking for hidden files/dirs/ADS…
I’m stuck!
Maybe a clear head in the morning will help… it’s 2AM.
I found user1 and user2, but I’m struggling with user2 in terms of the smb creds. I was able to identify the user flags for each. Need a nudge please, thanks!
finished the box. Happy to help anyone stuck on it.
IDK if anyone know but can anyone DM me why user m******* couldn’t do certain S** functions that user r**** could? was it a specific permission? if so, which one? thanks
Rooted! Took me a long long time, but all the hints you need are on this forum.
I was stuck way too long with trying to create a file with Visual Studio, but a file from msfvenom worked aswell.
I loved this box, learned a lot.