Wi-Fi Penetration Testing Basics - Skills Assessment

Friends, Enemies, good evening.

I have almost completed the entire module, but I find a strange behavior in connecting to a remote server. The situation is this:

In the first question, I have identified the Wi Fi network.

In the second question, I have cracked the password.

So, now I have configured my Wi Fi connection, and I have connected to the Access Point successfully. Later, I connected to remote Server specified on the Question3 (192.168.1.1 or 192.168.2.1).

When I are on the Remote Host (I connected with the user wifi/wifi) I have notice that this is the same my Remote Pwnbox, so I don’t find the flag on the filesystem. If I find on local filesystem it’s the same thing. I can make also sudo and gain the root access.

Look this scenario, I have create a file named Pippo in the my local Pwnbox, later I make connection through Ssh on the remote host and I can look the same file on the filesystem. I can disconneted on the remote host and return on my machine.

Where is the problem? Has anyone managed to find the answer to this question? I found the same problem in the paragraf “Connecting to Wi-Fi Networks” of the same Module.

wifi@WiFiIntro:~$ touch pippo

wifi@WiFiIntro:~$ ls -l pippo
-rw-rw-r-- 1 wifi wifi 0 Nov 22 23:29 pippo

wifi@WiFiIntro:~$ ssh -l wifi 192.168.1.1
The authenticity of host ‘192.168.1.1 (192.168.1.1)’ can’t be established.
ED25519 key fingerprint is SHA256:4FKihMzTd7fqL6aQALfrRaIWS+T1Eq2JwESDkCxkoEM.
This key is not known by any other names
Are you sure you want to continue connecting (yes/no/[fingerprint])? yes
Warning: Permanently added ‘192.168.1.1’ (ED25519) to the list of known hosts.
wifi@192.168.1.1’s password:
Welcome to Ubuntu 22.04.4 LTS (GNU/Linux 5.4.0-88-generic x86_64)

The programs included with the Ubuntu system are free software;
the exact distribution terms for each program are described in the
individual files in /usr/share/doc/*/copyright.

Ubuntu comes with ABSOLUTELY NO WARRANTY, to the extent permitted by
applicable law.

wifi@WiFiIntro:~$ pwd
/home/wifi

wifi@WiFiIntro:~$ ls -l
drwxr-xr-x 2 wifi wifi 4096 May 28 04:30 Desktop
drwxr-xr-x 2 wifi wifi 4096 May 28 04:30 Documents
drwxr-xr-x 2 wifi wifi 4096 May 28 04:30 Downloads
-rw-rw-r-- 1 wifi wifi 0 Nov 22 23:29 pippo
drwxrwxr-t 2 wifi wifi 4096 May 28 04:30 thinclient_drives
-rw-r–r-- 1 root root 139921516 May 24 21:43 wordlist.txt

Solved!

1 Like

How did you connect to HTB wifi?

You need to capture the Beacon Message, where you can find at EAPOL.

When you have capture this, you can crack with the wordlist present in you home directory.

1 Like


i have password, but can not connect to HTB wifi


mm

You have a private message

1 Like