Hi,
I have recovered the credentials to the FTP and logged in. I recovered a password manager database that I was not successful to crack. I logged in to SMB but I cannot list anything. People are talking about passwords in a password protected zip file that I could not find. I looted everything from FTP but nothing to get a foothold into the machine. Any nudge without a spoilers would be much appreciated.
I need little help. I Have credentials (users and password) but I can’t login to the ftp. What am I doing wrong?
Hi,
Would anyone mind a PM to give some hints on the priv esc?
Hi, Any pointers on getting shell, have ftp access and pretty sure on whats required from note in SP, but cant get that shell.
@ats26 said:
I need little help. I Have credentials (users and password) but I can’t login to the ftp. What am I doing wrong?
If you have user and pass just basic ftp connect nothing special, are you sure you have the correct user:pass ?
Something messed with the password while ctrl+c ctrl+v. Now I’m struggling with priv esc…any help?
The creds you guys found for the exposed service, did they work for you ? I have been trying to login to the service using a couple of creds I found on the shared folder but with no luck (one of them was found on the .zip file that I had to crack)
I also know that the file is UT16 that is why it has an issue with ctrl+c ctrl+v
I always receive the following error message: Login failed for user *****
Please someone help with priv esc. Don’t want to say what I have done here in public forum. can someone PM me if they own this box and help. I will explain what I have done so far.
Can anyone give me a hint on how to recover the credentials? I’ve enumerated with sparty and spartan and I have a list of directories that return 200 OK but they all seem to contain SOAP templates. I don’t see any Redirect with or without Burp suite…
Found ftp password but not user. As many people in this thread
Got it. First step done. A very painful machine
Can anyone give me a hint for FTP User?
help for Tally
A hint on the priv esc would be much appreciated. Been working on it for a while now.
@beginner2010 said:
Guys, who can give a hint? I’ve got access to ftp, got creds to smb and found old creds for db and creds from password-protected zip. The problem is that I can’t connect with them to DB.
I have the same situation, any hints please !
@Glasgow said:
I was able to find the FTP info (hostname, workgroup, and password) but have not had any luck in logging in. Am I on the right path or am I way off base?
you are very lucky, i even getting no hosts are up when i tried for port scanning. plz help me as i am new to this site.
I won’t be offended if my post here gets censored for being a “SPOILER”, but I’m confused. TALLY is like a marathon breadcrum trail from login to login, from service to service, now I have user, I have my meterpreter shell, but half the things I try to access are “Handle is invalid”, “File Not Found”, know what I mean? Is this a DOMAIN thing? Because WORKGROUP, TALLY, SHAREPOINT, HTB.LOCAL, I’m like, what? Anyways, I guess PM me cuz any answer will be a spoiler.
hey guys ,
please give me some hints on how to exploit sharepoint and which resources will be helpful in learning the exploitation process
I haven’t done any windows machine yet and this is my first windows machine…so a little bit stuck
Can I pm someone about this box ?
Nevermind, found my problem 