Good luck! Be calm, take breaks and keep a opened mind. There is always a way in and most of the times people failed because they have missed basic stuff during the enumeration process. If you'll be stuck for a long time, take a break, make yourself a cup of tea/coffee, chill out for a while and get back to work. Enumerate like your life depends on it :D You've got this!
Thank you very much for showcasing the box. Just curious do you believe that the adb port were open because USB-debugging were activated in android ( perhaps also why it were filtered over device ip ) Also thank you for reminding us about how easy it is to list content without knowing the files ( it has really made me think about perhaps not always transfer files that way when in environments that I don’t control )
In one of the scan, we saw that the box was a VMWARE virtual machine and in a scan we found that it was running a ES File explorer and the box was an android device. It was pretty clear that the box was android vm which was hosted over VMWARE. I think it was rooted android VM by default and in rooted VM's USB debugging is enabled by default. The main challenge was to discover that there is 5555 port was internally running with an adb shell and doing the port forwarding over ssh.
The password was such a pain when i ssh'd. I kept getting It wrong but couldn't see which character. So i started making my own passwords that difficult just to troll any would be foes.
Taking OSCP tomorrow. Regardless of the result, thank you for all the amazing content. Goes far beyond a simple cert.
Good luck! Be calm, take breaks and keep a opened mind. There is always a way in and most of the times people failed because they have missed basic stuff during the enumeration process. If you'll be stuck for a long time, take a break, make yourself a cup of tea/coffee, chill out for a while and get back to work. Enumerate like your life depends on it :D You've got this!
Good luck! :) make things happen
@@quriusfox thank you yeah coffee definitely haha! :)
@@cy_wareye7395 will try hehe thanks!
Gl man
We really appreciate the time and knowledge you are giving you us. True dedication
Extra content maybe tomorrow? 👉👈
I don't have anything planned. Was busy last week, so didn't have time to put anything togather.
@@ippsec It´s ok, thank you for the great content. ❤
Bro, really ready good
Your teaching is awesome ❤❤
ippsec you are a great teacher.
So happy to see the legendary Ippsec using my exploit in 05:16
As usual the king of htb
In fact, the most difficult part of this machine is to be able to type the credentials without making mistakes.
This is where I lost the most time :(
for me the port forwarding, I dont feel it natural lol...
damn man i love u
❤️
Is there any problem with the machine, i am not able to ssh on port 2222 :(
after i use 'squiggly c' it says not found, can anyone explain what im missing?
7:26 haha you are trapped
Very nice video sr,
Thank you.
i cant understand how to get that ssh> in victim machine
Same
@@rohitthakur.9587 I understood bro first of all we need ssh access of the victim machine there we can access that ssh interactive shell
@@BasavarajBanakar type ' ~C ' . it launches an interactive ssh shell.
@@NicolastheThird-h6m Thanks brother I got it already.
@@NicolastheThird-h6m i keep getting this "/system/bin/sh: ~C: not found
"
cool
Please please please make more videos for android hacking .... You very good 🙂 thank you
Ten ten ten
Thank you very much for showcasing the box.
Just curious do you believe that the adb port were open because USB-debugging were activated in android ( perhaps also why it were filtered over device ip )
Also thank you for reminding us about how easy it is to list content without knowing the files ( it has really made me think about perhaps not always transfer files that way when in environments that I don’t control )
In one of the scan, we saw that the box was a VMWARE virtual machine and in a scan we found that it was running a ES File explorer and the box was an android device. It was pretty clear that the box was android vm which was hosted over VMWARE. I think it was rooted android VM by default and in rooted VM's USB debugging is enabled by default. The main challenge was to discover that there is 5555 port was internally running with an adb shell and doing the port forwarding over ssh.
and in rooted android vm's gaining root privileges can be accessed easily as "ippsec" demonstrated by using a simple command su.
The password was such a pain when i ssh'd. I kept getting It wrong but couldn't see which character. So i started making my own passwords that difficult just to troll any would be foes.
Didn't know there is android box
Ooooo
Can u please do Bounty hunter machine next?love the content
He will once the machine retires
Hello, your videos are so detailed, do you have tutorial for beginner frdly?
Can I have your brain?