Posts: 2
Threads: 0
Joined: Sep 2023
This rev shell worked for me ( https://github.com/martinsohn/PowerShell-reverse-shell), and I was able to get the userl flag, but the shell is too slow and unstable, that I can't even enumerate the system properly.
Can somebody plz recommend a better payload for this box? (already tried msfvenom for powershell - didn't work)
Posts: 9
Threads: 0
Joined: Aug 2023
(Oct 04, 2023, 11:53 AM)robillard Wrote: How did you get the shell? Including a malicious .sln file that includes the shell code??
Thanks 
GitHub - Miranda-Bai/C_plus: Used for HTB Visual machine practice.
Posts: 13
Threads: 0
Joined: Oct 2023
Oct 04, 2023, 02:51 PM
(This post was last modified: Oct 04, 2023, 02:57 PM by notforothers.)
(Oct 04, 2023, 02:31 PM)robillard Wrote: Thanks a lot, but unfortunately, I keep getting the "the repository does not contain a .snl file" error...
Faced same problem. Get gitea. Install it properly. And create a repo... You'll get revshell in no time.
(Oct 02, 2023, 04:40 AM)4ip0k Wrote: (Oct 02, 2023, 04:17 AM)hooneyman Wrote: Could u give me a nudge for root part?.. im confused jeje
As coolhunter123 already wrote:
1) User have privilege to write in the webapp directory;
2) Create a `php reverse shell` beside the index.html, get a shell with user NT local service;
3) Use `FullPowers` tool to expand ur privileges and SeImpersonate system using flag -c to get another reverse shell;
4) Use `GodPotato` tool to PE to NT AUTHORITY\SYSTEM.
It works like a charm when you get the reverse shell. Just stay cool.
Can anybody tell me what are the vuln and why it works though. Please PM me. Love to know the tidbits.
Posts: 3
Threads: 0
Joined: Sep 2023
facing problem in gitea setup.. help plz
Posts: 2
Threads: 0
Joined: Oct 2023
i can upload my repository but i cant get my shell 
can someone help me ?
Posts: 7
Threads: 1
Joined: Sep 2023
hi everyone,
what i am doing wrong?
shoud i paste http://myip:8000/repo into submit or http://myip:8000/repo.git ?
i got an error The repository doesn’t contain a .sln file or the URL submitted is invalid.
Posts: 3
Threads: 0
Joined: Oct 2023
does anybody have writeup for this machine ???
Posts: 13
Threads: 0
Joined: Oct 2023
Oct 05, 2023, 02:08 PM
(This post was last modified: Oct 05, 2023, 02:14 PM by notforothers.)
You can either create the repo in github or run gitea or if you are in your local machine serve the .git folder since the box is searching for git repo not your code.
The .git folder acts as git repo.
(Oct 01, 2023, 07:29 PM)peRd1 Wrote: (Oct 01, 2023, 06:01 PM)lightweightbaby Wrote: (Oct 01, 2023, 04:33 PM)peRd1 Wrote: Gitea server is one of the ways to go. The easier and quicker solution is just running python server with the http module.
You just need to create your git folder appropriately, have your entire source code files inside (including .sln file!!!), and watch how your files are pulled out by server. If that's fine, then your good to go.
Then just check the logs when the server builds your project. If there are no errors and still nothing happens, your code is bad. Otherwise, it should work and do your thing (revshell hitting back home?).
Can you tell me please about it more details. I donn't understand how i should make the repo, should i create repo already with a shell or i can use random repo and then when i upload it on server i can somehow upload a shell ? Create a new C# web console dot6.0 project. Any hello world project is fine. Look into prebuild events.
Add there your revshell. Copy WHOLE project to your folder. Initialize and setup git folders appropriately, such as:
git init
git add .
git commit -m 'project_name'
cd .git
git --bare update-server-info
launch your python webserver with python -m http.server 80
or do the same with gitea.
Also dont forget each time you mess with source files, rerun the git commit command so it refreshes the repo.
Do we need `git --bare update-server-info`, I dont know. But all others above are required.
All the necessary details about exploiting the systems are listed here.
Posts: 3
Threads: 0
Joined: Sep 2023
(Oct 05, 2023, 02:08 PM)notforothers Wrote: You can either create the repo in github or run gitea or if you are in your local machine serve the .git folder since the box is searching for git repo not your code.
The .git folder acts as git repo.
(Oct 01, 2023, 07:29 PM)peRd1 Wrote: (Oct 01, 2023, 06:01 PM)lightweightbaby Wrote: (Oct 01, 2023, 04:33 PM)peRd1 Wrote: Gitea server is one of the ways to go. The easier and quicker solution is just running python server with the http module.
You just need to create your git folder appropriately, have your entire source code files inside (including .sln file!!!), and watch how your files are pulled out by server. If that's fine, then your good to go.
Then just check the logs when the server builds your project. If there are no errors and still nothing happens, your code is bad. Otherwise, it should work and do your thing (revshell hitting back home?).
Can you tell me please about it more details. I donn't understand how i should make the repo, should i create repo already with a shell or i can use random repo and then when i upload it on server i can somehow upload a shell ? Create a new C# web console dot6.0 project. Any hello world project is fine. Look into prebuild events.
Add there your revshell. Copy WHOLE project to your folder. Initialize and setup git folders appropriately, such as:
git init
git add .
git commit -m 'project_name'
cd .git
git --bare update-server-info
launch your python webserver with python -m http.server 80
or do the same with gitea.
Also dont forget each time you mess with source files, rerun the git commit command so it refreshes the repo.
Do we need `git --bare update-server-info`, I dont know. But all others above are required.
All the necessary details about exploiting the systems are listed here.
Yaa but it shows that .sln file does not exists (that's the problem)
Posts: 7
Threads: 1
Joined: Sep 2023
(Oct 05, 2023, 01:39 PM)haemanth Wrote: does anybody have writeup for this machine ???
yes google
|
