Jump to content

Bob123

Active Members
  • Content Count

    145
  • Joined

  • Last visited

  • Days Won

    4

1 Follower

About Bob123

  • Rank
    Hak5 Zombie

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. That's interesting. I've never tried it on a computer with an MS connected account. I'll have to give that a shot. I wonder how that works, if it actually keeps a hash on the computer since it isn't a local account. But that's cool I'm glad you got it to work.
  2. Explain your setup, what your trying to do, and what your powering off and back on. Thanks.
  3. VB won't help you. Just take your program apart line by line and run it in either the run window, the command line, or ps. It's really quite easy and I do that all the time. More than likely if your payload isn't working then the timing is too aggressive. Put longer delays between lines. Add delays between lines and enters (that's a big one). Just delay the crap out of your payload. A lot of payloads on here are way too aggressive. I know the ducky is fast at typing but if it's still typing a huge line and ENTER is the next line and there's no delay between them, I've seen it not finish the previous line before hitting enter. Slow it down, verify it works, and slowly speed it back up to where it either runs or it doesn't. Which payload are you trying to use?
  4. Does pivoting still work? I did an online class recently and it seemed like everything was ok but I could not get a reverse shell using psexec. Anyone have luck with that? I was using kali 2019.2 and .3. Psexec worked on the first network, it saw the second network but refused a reverse connection. I was using meterpreter reverse tcp. The two boxes I were using were Win10 boxes in which I knew the usernames and passwords. Just as a proof of concept I tried the same thing but used two xp boxes with the same setup. Kali had the same issues using MS08-067. It would connect to the first box but refused to pivot. I ended up trying parrot which i think was 4.7 and it worked fine however I had to use a reverse tcp bind. Went back to win10 and couldn't get parrot to work psexec. So just wondering if I'm missing anything with pivoting? I'm adding the route, it shows it's added, I can ping it. Just can't get a reverse shell. Any help would be great. I have the VMs powered down at the moment but can bring them back up to give exact answers to any questions. Thanks.
  5. NAS, print server, stuff like that.
  6. I was all excited thinking it was a new payload that blew up routers or something. 🙂
  7. You know I thought that too but a fresh install of Win10 1903 and I still get hashes running quickcreds. So I have no idea why it still works on mine. I suppose I could leave the machine on for a while and let Billy-Bob install a bunch of updates and see if I still get hashes after that. Might be interesting to see.
  8. But that's the thing that I think your getting confused on. There are no USB static IPs on computers that are just sitting around. When you plug in the lan turtle via USB you are creating that "virtual" network. There was nothing there before it. So by default it'll be dynamic (DHCP). I can't think of a reason of why you'd want to make it static but I guess the option is there. But it is not a TRUE ethernet network. Think of it as a virtual network between you and the lan turtle or that pc and the lan turtle. So hopefully that wasn't too confusing but to answer your question above. If the computer has a static IP of 10.10.50.102 that is a physical ethernet connection. The lan turtles 172.16.84.x network is a virtual network between the lan turtle and that computer. So that computer will automatically get am IP of 172.16.84.x. It'll still have the 10 network because that's a different network. So at that point it'll have two networks. Hope this helps.
  9. Just going by your message and nothing else. Are you referring to the network connection over eithernet or the network connection over USB? Cause those are two different things. When you plug in the lan turtle over USB to your computer it makes it's own "network" connection and get a DHCP IP from the lan turtle. Once you know what it's IP is then you could give your PC a static IP if you prefer. If you are referring to the lan turtle's network port, it's been a while but I believe you give the turtle itself an IP to make the network your going to plug it into. At least that's how I've done it in the past.
  10. Ok I deleted the db file, locked the computer and tried it again. It got the hash without issue. Took a bit longer, probably because it had to recreate the db file. And then I also tried it with the computer unlocked and it worked too. Again this is with a vanilla win10 box 1903. Just a username and simple password. What does yours do? On a side note, I've never tried LaZagne. I'll try that one next.
  11. Bob123

    Is HAK5 dead?

    Thanks Darren I'm looking forward to it! Also if there's any chance that either on here or through a video that you could give us an update on pretty much everything that would be great. I'd be interested to know what happened to Tekthing, where it's going or if it's coming back. Anything new from Mubix. I've heard some people say you've all moved. Not asking for anything too personal from everyone but I've been watching Hak5 since the beginning so any updates would be greatly appreciated. I do miss that weekly dose of technolust!
  12. I've always locked the pc before running quickcreds. But I can try what your asking.
  13. Anyone know how to make a NAT that has an IP table to match public to private networks? What I want to do is have a private network of say 192.168.1.x and a public network of say 10.10.10.x. I'd like to have a table that matches private to public, that way most of the 192 network is behind the NAT and only a few are let through and are translated to 10 network. Is there a quick and easy way to make that possible with the packet squirrel? I figured I'm not using it for anything else and I could buy a device that'll do exactly what I want...but at $500, I'm hoping the packet squirrel could do it. Thanks.
  14. Ever get quickcreds to work again? I finally had time to sit down and run dumphash.py and it dumped what i had in the responder.db file. I did run it against a new pc (quickcreds that is) so the db was updated then running dumphash showed everything including the updated hash. So I guess if you just want a simple script/payload that dumps what's in your db file, yours works great for that. So I'll hold onto it.
×
×
  • Create New...