Forum Discussion
Bronze IIIHuman Connection Challenge: Season 1 – Windows
After the other Human Connection Challenges, I'm now completely stuck on Machine 1 of the Human Connection Challenge: Season 1 – Windows lab.
I found the obvious hidden credentials the the:
IMLUser via the web
But I can't find anything on the
SMBClient or RDP
SMB: I can read the 'C' share, but there are no useful files (I can find), and I can't write anything. No other shares are readable.
RDP: Cannot login with the IML user (not in the remote users group).
Any hints?
Hi Xat I feel your pain, I got very frustrated with this one too, but it's a good example of how easy it can be to fall down several rabbit holes! I don't know how much to give away but sometimes it pays to get 'Brutal' with all exposed services (some of the enumeration you've done might be a breadcrumb to other viable accounts too).
10 Replies
- KieranRowley
Community Manager
I'm going to leave it to the community to reply to your question, but I did not know that you could hide spoilers in this forum, so thank you for that!
Al13nzBronze II
Funny thing about Microsoft is they don't add lockout policies by default to certain 'Built in accounts' ;p
- Al13nz
Hi Xat I feel your pain, I got very frustrated with this one too, but it's a good example of how easy it can be to fall down several rabbit holes! I don't know how much to give away but sometimes it pays to get 'Brutal' with all exposed services (some of the enumeration you've done might be a breadcrumb to other viable accounts too).
- Xat
This lab! StefanApostol is obviously an evil mastermind. I think some of the level 9s I've done were easier.
steven / Al13nz any change for a hint on "What is the Host 2 token found in C:\Users\Administrator\Desktop\token.txt?".
All the other machines have been solved. Just can't escalate privileges on Machine 2 😅- Xat
You're a super star. All done! Lesson learned: I need to use metasploit more... I was hand crafting exploits.
