Reverse Shell & Payloads - The live engagement

weller · January 9, 2023, 1:22pm

Hi,

You need to take a look at rhosts and vhost, you made a small error there.

Kr

cbr0t · January 10, 2023, 4:00am

anyone else having issues with host 3 ? the hint says exactly which exploit will work but it doesnt.

weller · January 10, 2023, 7:26am

Hi Jar3d,

You need to make use of the vhost options within msfconsole

cbr0t · January 10, 2023, 2:11pm

i’ve looked through all 4 modules in msfconsole and i don’t see any vhost option.

weller · January 10, 2023, 6:52pm

Look at the post famasoon posted. There u see that u need to load a module which is not in the msfconsole database but u need to insert it manually into msfconsole. you can find this on exploitdb

cbr0t · January 10, 2023, 7:22pm

thanks for your help but i’ve already completed that part. i’m currently stuck on host 3 and eternalblue not working

weller · January 10, 2023, 8:00pm

are you using the correct exploit?

cbr0t · January 11, 2023, 4:03am

im absolutely stumped here. here is a screenshot of my setup

and i get this after it runs

weller · January 11, 2023, 7:08pm

Look at you LHOST, is it in the same range as your RHOSTS?

craig · January 11, 2023, 7:53pm

Hey sorry could you please message me with what the correct RHOST and VHOST should be i can not figure this out and its pretty unmotivating

cbr0t · January 11, 2023, 11:15pm

yeah ive tried both. same result

and thats why im stumped

weller · January 12, 2023, 7:10am

send me a private message if u are still stuck and show me your setup and results

gizmoe380 · January 29, 2023, 6:19pm

thats why you da man!!!

suryateja · February 11, 2023, 11:18am

You no need to change the RHOST, check show options you need to change the RHOSTS and VHOST; username and password given in the text file which is on desktop. RHOSTS is the ip of the blog.inlanefreight.local and you know the VHOST.
Happy Hacking

J1nx · February 21, 2023, 9:19am

I am still stuck exactly where you are at, and have included different payload types with the hopes that i would get access yet nothing. I am checking closely to my enumeration, and still cannot find anything. Were you able to get this solved my friend? maybe any further hints you can throw my way to help me gain access to this flag with the recomended exploit that HTB gives in the hint?

Respectfully,

cbr0t · February 22, 2023, 3:08am

it turns out it was something really simple. I was using the wrong exploit.

blizco · February 24, 2023, 2:57pm

I have exactly same problem with the last question (Host-03). Same screenshot as you showed etc. I tried all the different exploits, so I was wondering which exploit is the right one, because you mentioned you was using the wrong exploit. I can send you a DM if you want with all my attempts.

kevtech · March 1, 2023, 9:29pm

try psexec

blizco · March 2, 2023, 10:50am

Thanks mate. Solved!

evanr50 · March 23, 2023, 4:33pm

Hey all,
I’m trying to use the ruby exploit linked in the blog to get shell access, but encounter this error when I try and run the exploit:

Has anyone seen this/have any advice? replies here or PMs are appreciated!