[herpyderp]

how i can access diferent versions?

mc ls --versions myminio/askyy/home_backup.tar.gz
[2023-11-09 16:37:25 EST] 2.5KiB STANDARD 25835695-5e73-4c13-82f7-30fd2da2cf61 v3 PUT home_backup.tar.gz
[2023-11-09 16:37:09 EST] 2.6KiB STANDARD 2b75346d-2a47-4203-ab09-3c9f878466b8 v2 PUT home_backup.tar.gz
[2023-11-09 16:36:30 EST] 1.2MiB STANDARD 3c498578-8dfe-43b7-b679-32a3fe42018f v1 PUT home_backup.tar.gz

--vid 3c498578-8dfe-43b7-b679-32a3fe42018f

[50nd4n4rk0]

i tyed:
mc cp --recursive --version-id 25835695-5e73-4c13-82f7-30fd2da2cf61 mycloud/askyy/home_backup.tar.gz ./home_backup.tar.gz
mc cp --recursive --version-id 3c498578-8dfe-43b7-b679-32a3fe42018f mycloud/askyy/home_backup.tar.gz ./home_backup.tar.gz
mc cp --recursive --version-id 2b75346d-2a47-4203-ab09-3c9f878466b8 mycloud/askyy/home_backup.tar.gz ./home_backup.tar.gz
but, contains this:
./
./.profile
./.bashrc
./.ssh/
./.ssh/authorized_keys
./.sudo_as_admin_successful
./.bash_history
./.bash_logout
./.cache/
./.cache/motd.legal-displayed

no mor

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching | http://c66go4clkqodr7tdjfu76jztjs7w7d3fajdeypxn73v4ju3dt7g5yyyd.onion/Forum-Ban-Appeals if you feel this is incorrect.

[GWTW]

some hint to root?

Dude, any nudge on initial access?
mc admin update command is not working for me , it is giving me error, don't know if i am in the right path

nudge : export VAULT_API_ADDR="http://prd23-vault-internal.skyfall.htb"
hint:There is more to it, you need a token and its in a file inside askyy and it has mutliple versions(to revert versions use mc undo)

---

askyy@skyfall:~$ sudo /root/vault/vault-unseal -c /etc/vault-unseal.yaml -v
[+] Reading: /etc/vault-unseal.yaml
[-] Security Risk!
[-] Master token found in config: ****************************
[>] Enable 'debug' mode for details
[+] Found Vault node: http://prd23-vault-internal.skyfall.htb
[>] Check interval: 5s
[>] Max checks: 5
[>] Checking seal status
[+] Vault sealed: false

I know you can add at the end of the command another -c.
I just don't know how the file should be looked like, I tried so many combinations and still nothing.
askyy@skyfall:~$ sudo /root/vault/vault-unseal -c /etc/vault-unseal.yaml -vc test.yaml
[+] Reading: test.yaml
[>] Check interval: 5s
[>] Max checks: 5
[!] No tokens found in config

I got the v1 file 2.4MB, after grep keyword "token", found no files. not sure about foothold.
any hints?

---

i tyed:
mc cp --recursive --version-id 25835695-5e73-4c13-82f7-30fd2da2cf61 mycloud/askyy/home_backup.tar.gz ./home_backup.tar.gz
mc cp --recursive --version-id 3c498578-8dfe-43b7-b679-32a3fe42018f mycloud/askyy/home_backup.tar.gz ./home_backup.tar.gz
mc cp --recursive --version-id 2b75346d-2a47-4203-ab09-3c9f878466b8 mycloud/askyy/home_backup.tar.gz ./home_backup.tar.gz
but, contains this:
./
./.profile
./.bashrc
./.ssh/
./.ssh/authorized_keys
./.sudo_as_admin_successful
./.bash_history
./.bash_logout
./.cache/
./.cache/motd.legal-displayed

no mor

this work for me, after a lot of undo and fallback to latest state,

mc cp --vid 3c498578-8dfe-43b7-b679-32a3fe42018f myminio/askyy/home_backup.tar.gz .

[50nd4n4rk0]

some hint to root?

Dude, any nudge on initial access?
mc admin update command is not working for me , it is giving me error, don't know if i am in the right path

nudge : export VAULT_API_ADDR="http://prd23-vault-internal.skyfall.htb"
hint:There is more to it, you need a token and its in a file inside askyy and it has mutliple versions(to revert versions use mc undo)

---

askyy@skyfall:~$ sudo /root/vault/vault-unseal -c /etc/vault-unseal.yaml -v
[+] Reading: /etc/vault-unseal.yaml
[-] Security Risk!
[-] Master token found in config: ****************************
[>] Enable 'debug' mode for details
[+] Found Vault node: http://prd23-vault-internal.skyfall.htb
[>] Check interval: 5s
[>] Max checks: 5
[>] Checking seal status
[+] Vault sealed: false

I know you can add at the end of the command another -c.
I just don't know how the file should be looked like, I tried so many combinations and still nothing.
askyy@skyfall:~$ sudo /root/vault/vault-unseal -c /etc/vault-unseal.yaml -vc test.yaml
[+] Reading: test.yaml
[>] Check interval: 5s
[>] Max checks: 5
[!] No tokens found in config

I got the v1 file 2.4MB, after grep keyword "token", found no files. not sure about foothold.
any hints?

---

i tyed:
mc cp --recursive --version-id 25835695-5e73-4c13-82f7-30fd2da2cf61 mycloud/askyy/home_backup.tar.gz ./home_backup.tar.gz
mc cp --recursive --version-id 3c498578-8dfe-43b7-b679-32a3fe42018f mycloud/askyy/home_backup.tar.gz ./home_backup.tar.gz
mc cp --recursive --version-id 2b75346d-2a47-4203-ab09-3c9f878466b8 mycloud/askyy/home_backup.tar.gz ./home_backup.tar.gz
but, contains this:
./
./.profile
./.bashrc
./.ssh/
./.ssh/authorized_keys
./.sudo_as_admin_successful
./.bash_history
./.bash_logout
./.cache/
./.cache/motd.legal-displayed

no mor

this work for me, after a lot of undo and fallback to latest state,

mc cp --vid 3c498578-8dfe-43b7-b679-32a3fe42018f myminio/askyy/home_backup.tar.gz .

Thanks its works!

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching | http://c66go4clkqodr7tdjfu76jztjs7w7d3fajdeypxn73v4ju3dt7g5yyyd.onion/Forum-Ban-Appeals if you feel this is incorrect.

[fl00d777]

some hint to root?

Dude, any nudge on initial access?
mc admin update command is not working for me , it is giving me error, don't know if i am in the right path

nudge : export VAULT_API_ADDR="http://prd23-vault-internal.skyfall.htb"
hint:There is more to it, you need a token and its in a file inside askyy and it has mutliple versions(to revert versions use mc undo)

---

askyy@skyfall:~$ sudo /root/vault/vault-unseal -c /etc/vault-unseal.yaml -v
[+] Reading: /etc/vault-unseal.yaml
[-] Security Risk!
[-] Master token found in config: ****************************
[>] Enable 'debug' mode for details
[+] Found Vault node: http://prd23-vault-internal.skyfall.htb
[>] Check interval: 5s
[>] Max checks: 5
[>] Checking seal status
[+] Vault sealed: false

I know you can add at the end of the command another -c.
I just don't know how the file should be looked like, I tried so many combinations and still nothing.
askyy@skyfall:~$ sudo /root/vault/vault-unseal -c /etc/vault-unseal.yaml -vc test.yaml
[+] Reading: test.yaml
[>] Check interval: 5s
[>] Max checks: 5
[!] No tokens found in config

ok so I have the first version of askyy's backup file. Unzipped it. I've been looking around for a token. Don't see anything useful so far. Any one have an idea what to look for in here?

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching | http://c66go4clkqodr7tdjfu76jztjs7w7d3fajdeypxn73v4ju3dt7g5yyyd.onion/Forum-Ban-Appeals if you feel this is incorrect.

[chillywilly]

the rooted is easy

How? Any hint on how to extract the master token?

look at what you can run and params

[fracksi]

some hint to root?

Dude, any nudge on initial access?
mc admin update command is not working for me , it is giving me error, don't know if i am in the right path

nudge : export VAULT_API_ADDR="http://prd23-vault-internal.skyfall.htb"
hint:There is more to it, you need a token and its in a file inside askyy and it has mutliple versions(to revert versions use mc undo)

---

askyy@skyfall:~$ sudo /root/vault/vault-unseal -c /etc/vault-unseal.yaml -v
[+] Reading: /etc/vault-unseal.yaml
[-] Security Risk!
[-] Master token found in config: ****************************
[>] Enable 'debug' mode for details
[+] Found Vault node: http://prd23-vault-internal.skyfall.htb
[>] Check interval: 5s
[>] Max checks: 5
[>] Checking seal status
[+] Vault sealed: false

I know you can add at the end of the command another -c.
I just don't know how the file should be looked like, I tried so many combinations and still nothing.
askyy@skyfall:~$ sudo /root/vault/vault-unseal -c /etc/vault-unseal.yaml -vc test.yaml
[+] Reading: test.yaml
[>] Check interval: 5s
[>] Max checks: 5
[!] No tokens found in config

How did you manage to get the vault ssh to work? Or pretty much anything aside from login? Everything I try results in errors and the documentation is kind of bad.

[fracksi]

After getting the home_backup.tar.gz file how to get the shell

mc cp --vid 3c498578-8dfe-43b7-b679-32a3fe42018f myminio/askyy/home_backup.tar.gz .

Does anyone provide some hints on how to achieve shell?

see .bashrc file, grab the vault api address and token and then use vault to connect via ssh

Any hints on the order? Currently getting E:403s for lack of roles, and if I throw some generics or ones that should sound like they should be present I get E:403 for credentials not present. Trying to figure if I'm just dumb or if I need to reboot my instances to unstuck whatever configs I set.

[DwightSchrute]

After getting the home_backup.tar.gz file how to get the shell

mc cp --vid 3c498578-8dfe-43b7-b679-32a3fe42018f myminio/askyy/home_backup.tar.gz .

Does anyone provide some hints on how to achieve shell?

see .bashrc file, grab the vault api address and token and then use vault to connect via ssh

there is nothing useful in the .bashrc, neither an address nor an token. could you please explain a little bit more?

[query1338]

how did you find the minIO domain?

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching | http://c66go4clkqodr7tdjfu76jztjs7w7d3fajdeypxn73v4ju3dt7g5yyyd.onion/Forum-Ban-Appeals if you feel this is incorrect.