JOIN BREACHFORUMS TELEGRAM
Haze - Hack The Box Season 7 - Windows Hard
by ShitWhiffler - Saturday March 29, 2025 at 06:59 PM
Breached
Member
Posts: 14
Threads: 0
Joined: Feb 2025
Reputation: 0
#21
Mar 29, 2025, 10:47 PM
How to get user flag???
Reply
Breached
Member
Posts: 25
Threads: 5
Joined: Jan 2025
Reputation: 0
#22
Mar 30, 2025, 12:24 AM
user flag free:

evil-winrm -i haze.htb -u 'edward.martin' -H '09e0b3eeb2e7a6b0d419e9ff8f4d91af'
Reply
Breached
Member
Posts: 36
Threads: 16
Joined: Feb 2025
Reputation: 0
#23
Mar 30, 2025, 01:04 AM
(Mar 30, 2025, 12:24 AM)fr34cker Wrote: user flag free:

evil-winrm -i haze.htb -u 'edward.martin' -H '09e0b3eeb2e7a6b0d419e9ff8f4d91af'


Thank you very much!
Does anyone know how to get root\administrator flag ?
Reply
Elite User

Posts: 196
Threads: 31
Joined: Apr 2024
Reputation: 13
#24
Mar 30, 2025, 01:32 AM
https://github.com/0xjpuff/reverse_shell_splunk

Then throw a potato at the box
Reply
Breached
Member
Posts: 33
Threads: 1
Joined: Oct 2024
Reputation: 0
#25
Mar 30, 2025, 01:47 AM
(Mar 30, 2025, 01:32 AM)maggi Wrote: https://github.com/0xjpuff/reverse_shell_splunk

Then throw a potato at the box

bro is onto something for sure
Reply
Breached
Member
Posts: 7
Threads: 0
Joined: Feb 2025
Reputation: 0
#26
Mar 30, 2025, 04:05 AM
(Mar 30, 2025, 01:32 AM)maggi Wrote: https://github.com/0xjpuff/reverse_shell_splunk

Then throw a potato at the box

yeah thats what I wanted to do, but how do you log into splunk? We don't have credentials that allow us to log in. We can only get the "Ld@p_Auth..." one from exploiting the LFI CVE. can't log into splunk with that one.
Reply
Advanced User

Posts: 77
Threads: 8
Joined: Aug 2024
Reputation: -1
#27
Mar 30, 2025, 04:14 AM
(Mar 30, 2025, 04:05 AM)zippo99 Wrote:
(Mar 30, 2025, 01:32 AM)maggi Wrote: https://github.com/0xjpuff/reverse_shell_splunk

Then throw a potato at the box

yeah thats what I wanted to do, but how do you log into splunk? We don't have credentials that allow us to log in. We can only get the "Ld@p_Auth..." one from exploiting the LFI CVE. can't log into splunk with that one.


admin
Sp1unkadmin@2k24
Reply
Breached
Member
Posts: 9
Threads: 0
Joined: Mar 2025
Reputation: 0
#28
Mar 30, 2025, 04:23 AM (This post was last modified: Mar 30, 2025, 04:25 AM by dimly5252.)
(Mar 30, 2025, 04:14 AM)rootme1122 Wrote:
(Mar 30, 2025, 04:05 AM)zippo99 Wrote:
(Mar 30, 2025, 01:32 AM)maggi Wrote: https://github.com/0xjpuff/reverse_shell_splunk

Then throw a potato at the box

yeah thats what I wanted to do, but how do you log into splunk? We don't have credentials that allow us to log in. We can only get the "Ld@p_Auth..." one from exploiting the LFI CVE. can't log into splunk with that one.


admin
Sp1unkadmin@2k24

How were you able to crack the admin hash?
(Mar 30, 2025, 12:24 AM)fr34cker Wrote: user flag free:

evil-winrm -i haze.htb -u 'edward.martin' -H '09e0b3eeb2e7a6b0d419e9ff8f4d91af'

How were you able to get the hash for this user? I was only able to get the username by using evil-winrm on mark.adams and looking around there.
Reply
Breached
Member
Posts: 7
Threads: 0
Joined: Feb 2025
Reputation: 0
#29
Mar 30, 2025, 04:27 AM
(Mar 30, 2025, 04:14 AM)rootme1122 Wrote:
(Mar 30, 2025, 04:05 AM)zippo99 Wrote:
(Mar 30, 2025, 01:32 AM)maggi Wrote: https://github.com/0xjpuff/reverse_shell_splunk

Then throw a potato at the box

yeah thats what I wanted to do, but how do you log into splunk? We don't have credentials that allow us to log in. We can only get the "Ld@p_Auth..." one from exploiting the LFI CVE. can't log into splunk with that one.


admin
Sp1unkadmin@2k24

that's awesome! where did you find that password?
Reply
Elite User

Posts: 196
Threads: 31
Joined: Apr 2024
Reputation: 13
#30
Mar 30, 2025, 04:43 AM (This post was last modified: Mar 30, 2025, 04:52 AM by maggi.)
(Mar 30, 2025, 04:27 AM)zippo99 Wrote:
(Mar 30, 2025, 04:14 AM)rootme1122 Wrote:
(Mar 30, 2025, 04:05 AM)zippo99 Wrote:
(Mar 30, 2025, 01:32 AM)maggi Wrote: https://github.com/0xjpuff/reverse_shell_splunk

Then throw a potato at the box

yeah thats what I wanted to do, but how do you log into splunk? We don't have credentials that allow us to log in. We can only get the "Ld@p_Auth..." one from exploiting the LFI CVE. can't log into splunk with that one.


admin
Sp1unkadmin@2k24

that's awesome! where did you find that password?
 Check Backups or Splunk...something related might stand out
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  [FREE] 300+ Writeups PDF HackTheBox/HTB premium retired Tamarisk 386 96,320 2 hours ago
Last Post: Sulk4685
  [FREE] HackTheBox Academy - CBBH CDSA CPTS All Modules Flags Techtom 49 3,925 6 hours ago
Last Post: opium0221
  [FREE] CPTS 12 FLAGS pulsebreaker 87 3,375 Yesterday, 01:29 PM
Last Post: darth_sidious
  [MEGALEAK] HackTheBox ProLabs, Fortress, Endgame - Alchemy, 250 Flags, leak htb-bot htb-bot 98 9,213 May 07, 2026, 08:05 PM
Last Post: Zacker90
  SVCHOST Injector 2026 opsecmaster67 0 115 May 07, 2026, 01:41 PM
Last Post: opsecmaster67

Forum Jump:


 Users browsing this forum: 1 Guest(s)