Forum Discussion
Human Connection Challenge: Season 1 – Windows
After the other Human Connection Challenges, I'm now completely stuck on Machine 1 of the Human Connection Challenge: Season 1 – Windows lab.
I found the obvious hidden credentials the the:
IMLUser via the web
But I can't find anything on the
SMBClient or RDP
SMB: I can read the 'C' share, but there are no useful files (I can find), and I can't write anything. No other shares are readable.
RDP: Cannot login with the IML user (not in the remote users group).
Any hints?
Hi Xat I feel your pain, I got very frustrated with this one too, but it's a good example of how easy it can be to fall down several rabbit holes! I don't know how much to give away but sometimes it pays to get 'Brutal' with all exposed services (some of the enumeration you've done might be a breadcrumb to other viable accounts too).
10 Replies
- Xat
Bronze III
- KieranRowley
Community Manager
I'm going to leave it to the community to reply to your question, but I did not know that you could hide spoilers in this forum, so thank you for that!
- Al13nz
Bronze II
Funny thing about Microsoft is they don't add lockout policies by default to certain 'Built in accounts' ;p
- Al13nz
Bronze II
Hi Xat I feel your pain, I got very frustrated with this one too, but it's a good example of how easy it can be to fall down several rabbit holes! I don't know how much to give away but sometimes it pays to get 'Brutal' with all exposed services (some of the enumeration you've done might be a breadcrumb to other viable accounts too).
- Xat
Bronze III
This lab! StefanApostol is obviously an evil mastermind. I think some of the level 9s I've done were easier.
steven / Al13nz any change for a hint on "What is the Host 2 token found in C:\Users\Administrator\Desktop\token.txt?".
All the other machines have been solved. Just can't escalate privileges on Machine 2 😅- Xat
Bronze III
You're a super star. All done! Lesson learned: I need to use metasploit more... I was hand crafting exploits.