JOIN BREACHFORUMS TELEGRAM
Office - HTB Writeup {Begineer}
by GWTW - Tuesday February 20, 2024 at 05:34 AM
Breached
Member
Posts: 1
Threads: 0
Joined: Nov 2023
Reputation: 0
#11
Feb 21, 2024, 01:18 AM
thanks. I want to earn credit to unlock the writeup.
Reply
Breached
Member
Posts: 3
Threads: 0
Joined: Feb 2024
Reputation: 0
#12
Feb 21, 2024, 02:23 AM
I got till vault creds using mimikatz but stuck after that cant find the password using dpapi::creds and masterkey
any hints would be appreciated
Reply
Advanced User

Posts: 50
Threads: 8
Joined: Jan 2024
Reputation: 29
#13
Feb 21, 2024, 04:58 AM
Sound great to hear that folks.

You can rate my profile via this link
https://breachforums.rs/reputation.php?uid=97449

"Rate User" for future endorsement!!
Reply
Breached
Member
Posts: 3
Threads: 0
Joined: Jan 2024
Reputation: 0
#14
Feb 21, 2024, 06:01 AM
Thank you for posting this.
Reply
Breached
Member
Posts: 5
Threads: 0
Joined: Jan 2024
Reputation: 0
#15
Feb 21, 2024, 03:26 PM
Very nice and handy Smile Good writeup!
Reply
Breached
Member
Posts: 5
Threads: 0
Joined: Sep 2023
Reputation: 0
#16
Feb 21, 2024, 03:37 PM
have they patched the unintended mysql pathway to root yet?
Reply
Breached
Member
Posts: 8
Threads: 0
Joined: Feb 2024
Reputation: 0
#17
Feb 21, 2024, 04:31 PM
Thanks for explanation
(Feb 20, 2024, 05:34 AM)GWTW Wrote: I would like to share you the Office - HTB Writeup. It's the Hard severity box and too much steps to understand and take part in.

For those who don't have enough 8 credits, 
you can earn 1 credit as per one reply/post in the forum' posts and come back with enough credits to support the efforts.
Participate in the forum and enjoy the threads!

User Flag
-------------
Web DB Credential - Joomla. 4.2.7 -  CVE-2023-23752
Joomla Administrator web page bruteforce to reverse shell.
Earn user flag with tstark acc.

Root Flag
-------------
ppotts shell - Libre Vulnerability
hhogan shell - Vault Credential revealed
Administartor - SharpGPOAbuse to root




Bests,
GWTW
Reply
Breached
Member
Posts: 3
Threads: 0
Joined: Feb 2024
Reputation: 0
#18
Feb 21, 2024, 06:40 PM
tyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyy
Reply
Breached
Member
Posts: 10
Threads: 0
Joined: Feb 2024
Reputation: 0
#19
Feb 21, 2024, 07:48 PM
Cool. Thank you very much.
Reply
Banned

Posts: 12
Threads: 0
Joined: Feb 2024
Reputation: -1
#20
Feb 22, 2024, 01:29 AM
[quote="GWTW" pid='438725' fecha='1708407267']
Me gustaría compartirles la Oficina - HTB Writeup. Es el cuadro de gravedad Difícil y hay demasiados pasos para comprender y participar.

Para aquellos que no tienen suficientes 8 créditos, 
puedes ganar 1 crédito por cada respuesta/publicación en las publicaciones del foro y regresar con suficientes créditos para apoyar los esfuerzos.
¡Participa en el foro y disfruta de los hilos!

Bandera de usuario
-------------
Credencial de base de datos web - Joomla. 4.2.7 - CVE-2023-23752
Fuerza bruta de la página web del administrador de Joomla para invertir el shell.
Obtenga la bandera de usuario con tstark acc.

Bandera raíz
-------------
shell ppotts - Vulnerabilidad libre
hhogan shell - Se revela la credencial de Vault
Administrador - SharpGPOAbuse para rootear




mejores,
GWTW
[/cita]

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: English Only Forum| https://breachforums.rs/Forum-Ban-Appeals if you feel this is incorrect.
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  [FREE] HackTheBox Academy - CBBH CDSA CPTS All Modules Flags Techtom 31 2,942 39 minutes ago
Last Post: hwzus47431
  CBBH Write Ups hiddenhacker 24 6,446 1 hour ago
Last Post: reze
Heart [FREE] HackTheBox All Cheatsheets Tamarisk 12 689 1 hour ago
Last Post: 69420
  [FREE] CPTS 12 FLAGS pulsebreaker 77 2,516 1 hour ago
Last Post: reze
  HTB Eloquia User and Root Flags - Insane Box 69646B 14 522 1 hour ago
Last Post: zamizamo

Forum Jump:


 Users browsing this forum: 1 Guest(s)