Store Page
Grey Hack
All Discussions Screenshots Artwork Broadcasts Videos Workshop News Guides Reviews

Grey Hack

Store Page
Grey Hack > General Discussion > Topic Details
KingofmarS Apr 10, 2018 @ 6:22pm
Client Wants Access to a Remote Machine
Trying to complete my first job. But I dont even know where to start... How do I access the victims machine so that I can steal their credentials?
< >
Showing 1-4 of 4 comments
DrDerpenstein Apr 10, 2018 @ 8:35pm 
:::SPOILERS:::

nmap the victim pc with the public ip address
shell in (however you can depending on port)
escalate your permissions (again it will depend on open ports)(think of sshescalte and web3xploit)
discover whatever you find
chmod o+w the usr/bin file
while shelled in nmap the local ip (something like 192.168.1.1)
escalate permissions in this new shell (you are now root inside of root)
do your dirty deeds

I completed the mission....but made the mistake of trying to get the victim to install the web3xploit himself via email request (i logged in as the admin and asked them to install it)

not sure what to expect after that tbh

basically make sure you have all the programs associated with whatever ports are open and do alot of discovery (cd and ls commands)

the first time I attempted this mission i hit the known bug of there being no way to escalate. If you follow these basic steps and there are no appropriate ports you may consider accepting a 'new' job with the same requirements.
#1
DrDerpenstein Apr 10, 2018 @ 8:37pm 
i forgot to mention: after you chmod o+w the usr/bin be sure to open the FileExplorer and copy in your escalation/permission exploits to the server. This is how you will access the commands when shelled into the local address.

...dont forget to clean the logs too
#2
Juiceblaster10k Apr 11, 2018 @ 6:54am 
Originally posted by R_Dogg SuperiorServers.co:
i forgot to mention: after you chmod o+w the usr/bin be sure to open the FileExplorer and copy in your escalation/permission exploits to the server. This is how you will access the commands when shelled into the local address.

...dont forget to clean the logs too
How exactly are you copying from your pc to the target, can you drag/drop from your file explorer to theirs?
#3
Kurouzu  [developer] Apr 11, 2018 @ 10:16am 
Originally posted by Battleporn:
How exactly are you copying from your pc to the target, can you drag/drop from your file explorer to theirs?

Yes, In addition to the scp command to copy remote files using ssh via terminal, you can also copy files to remote machines by simply opening the FileExplorer program on the remote machine (using the terminal) and then dragging the files you want.
Last edited by Kurouzu; Apr 11, 2018 @ 10:16am
#4
< >
Showing 1-4 of 4 comments
Per page: 1530 50

Grey Hack > General Discussion > Topic Details
Date Posted: Apr 10, 2018 @ 6:22pm
Posts: 4

Discussions Rules and Guidelines