Posts: 18 Threads: 0 Joined: N/A October 11, 2022 at 7:42 AM (September 29, 2022, 12:37 PM)ThatUsername Wrote: Sure,
on my WinRM Session i uploaded these files Posts: 32 Threads: 0 Joined: N/A October 12, 2022 at 7:38 PM ththththth Posts: 18 Threads: 0 Joined: N/A October 12, 2022 at 8:55 PM (September 26, 2022, 09:19 PM)ThatUsername Wrote: (September 25, 2022, 06:03 PM)jahman Wrote: Hello,
Via bloodhound : m.lovegod -- OWNS --> Group Network Audit -- Generic Write --> winrm_user
How did you collected the data? With every version of Bloodhound ingestor i ran into a "Failure to authenticate with LDAP". Using and his password.
Bloodhound.py | Sharphound.ps1 | Sharphound.exe
is failing. Let's hack Posts: 3 Threads: 0 Joined: N/A October 14, 2022 at 10:33 PM thanks Posts: 6 Threads: 0 Joined: N/A October 14, 2022 at 11:27 PM (September 24, 2022, 07:11 PM)Exa Wrote: New machine from 2022-09-24.
PORT STATE SERVICE
53/tcp open domain
80/tcp open http
88/tcp open kerberos-sec
135/tcp open msrpc
139/tcp open netbios-ssn
389/tcp open ldap
445/tcp open microsoft-ds
464/tcp open kpasswd5
593/tcp open http-rpc-epmap
636/tcp open ldapssl
3268/tcp open globalcatLDAP
3269/tcp open globalcatLDAPssl
5985/tcp open wsman
9389/tcp open adws
47001/tcp open winrm
49664/tcp open unknown
49665/tcp open unknown
49666/tcp open unknown
49667/tcp open unknown
49671/tcp open unknown
49678/tcp open unknown
49679/tcp open unknown
49685/tcp open unknown
49690/tcp open unknown
49700/tcp open unknown
49704/tcp open unknown
53869/tcp open unknown
tyyyyyyyyyyyyyyyyyyyyyy Posts: 7 Threads: 0 Joined: N/A October 15, 2022 at 4:06 AM (September 29, 2022, 12:13 PM)Hacker2222 Wrote: (September 29, 2022, 11:45 AM)ThatUsername Wrote: (September 28, 2022, 01:42 PM)Hacker2222 Wrote: (September 28, 2022, 01:36 PM)Exa Wrote: (September 28, 2022, 12:41 PM)Photographer Wrote: ok that fixed it for me too!!! thanks
Nice to hear. The lesson learnt is to use FQDNs when dealing with Kerberos tickets. This is the article I came across when troubleshooting: https://www.onsecurity.io/blog/abusing-kerberos-from-linux/
JAJAJAJA kerbersos hates ips LOL u always have to use domains with kerberos. at least microsoft kerberos
I´m a baby step away from root. But the tools that should work won´t do the job :D
only have time later in week to get user and root . can u explain steps ? maybe i can help. i assume its krbrelayup from messages of other users ? thanks Posts: 129 Threads: 0 Joined: N/A October 15, 2022 at 2:11 PM NTLM hash please Posts: 0 Threads: 0 Joined: N/A October 18, 2022 at 8:30 AM (September 29, 2022, 01:00 PM)pentester10 Wrote: (September 29, 2022, 12:37 PM)ThatUsername Wrote: Sure,
on my WinRM Session i uploaded these files !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! Posts: 7 Threads: 0 Joined: N/A October 18, 2022 at 11:44 PM (September 29, 2022, 12:37 PM)ThatUsername Wrote: Sure,
on my WinRM Session i uploaded these files Thanks Posts: 129 Threads: 0 Joined: N/A October 22, 2022 at 5:19 AM how to generate pfx-pass?? |
