Posts: 107
Threads: 1
Joined: Apr 2024
(09-01-2024, 12:39 PM)x1rx Wrote: (09-01-2024, 12:35 PM)jsvensson Wrote: (09-01-2024, 12:28 PM)x1rx Wrote: winrm_svc pass
from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes
from cryptography.hazmat.primitives import serialization
from cryptography.hazmat.backends import default_backend
import base64
def decrypt_string(key: str, cipher_text: str) -> str:
key_bytes = key.encode('utf-8')
cipher_bytes = base64.b64decode(cipher_text)
if len(key_bytes) not in {16, 24, 32}:
raise ValueError("Key must be 16, 24, or 32 bytes long")
cipher = Cipher(algorithms.AES(key_bytes), modes.CBC(b'\x00' * 16), backend=default_backend())
decryptor = cipher.decryptor()
decrypted_bytes = decryptor.update(cipher_bytes) + decryptor.finalize()
return decrypted_bytes.decode('utf-8')
key = 'b14ca5898a4e4133bbce2ea2315a1916'
cipher_text = 'TGlu22oo8GIHRkJBBpZ1nQ/x6l36MVj3Ukv4Hw86qGE='
print(decrypt_string(key,decrypt_string(key, cipher_text)))
well nice that you shared it but from where did you got:
key = 'b14ca5898a4e4133bbce2ea2315a1916'
cipher_text = 'TGlu22oo8GIHRkJBBpZ1nQ/x6l36MVj3Ukv4Hw86qGE='
From OutputMessenger , you should open it from a windows machine with m.harris credentials . Then you will find a UserExplorer.exe . dnSpy will give you this informations
Damm i thought so, so i should install application and then connect but on which port as i tried on 14123 and it didn't worked?
Posts: 200
Threads: 14
Joined: Apr 2024
09-01-2024, 02:06 PM
(This post was last modified: 09-01-2024, 02:12 PM by osamy7593.)
now i opened k.turner messanger acc but no thing useful
IT SEEMS WE can perform phising attack
Ban reason:
Asking for rep is not allowed (Permanent)
Posts: 43
Threads: 4
Joined: May 2024
09-01-2024, 02:15 PM
(This post was last modified: 09-01-2024, 02:18 PM by HTBcracker.)
(09-01-2024, 12:39 PM)x1rx Wrote: (09-01-2024, 12:35 PM)jsvensson Wrote: (09-01-2024, 12:28 PM)x1rx Wrote: winrm_svc pass
from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes
from cryptography.hazmat.primitives import serialization
from cryptography.hazmat.backends import default_backend
import base64
def decrypt_string(key: str, cipher_text: str) -> str:
key_bytes = key.encode('utf-8')
cipher_bytes = base64.b64decode(cipher_text)
if len(key_bytes) not in {16, 24, 32}:
raise ValueError("Key must be 16, 24, or 32 bytes long")
cipher = Cipher(algorithms.AES(key_bytes), modes.CBC(b'\x00' * 16), backend=default_backend())
decryptor = cipher.decryptor()
decrypted_bytes = decryptor.update(cipher_bytes) + decryptor.finalize()
return decrypted_bytes.decode('utf-8')
key = 'b14ca5898a4e4133bbce2ea2315a1916'
cipher_text = 'TGlu22oo8GIHRkJBBpZ1nQ/x6l36MVj3Ukv4Hw86qGE='
print(decrypt_string(key,decrypt_string(key, cipher_text)))
well nice that you shared it but from where did you got:
key = 'b14ca5898a4e4133bbce2ea2315a1916'
cipher_text = 'TGlu22oo8GIHRkJBBpZ1nQ/x6l36MVj3Ukv4Hw86qGE='
From OutputMessenger , you should open it from a windows machine with m.harris credentials . Then you will find a UserExplorer.exe . dnSpy will give you this informations
from the winrm_svc user, i saw something about the Chiefs_Marketing_chat group, have you found anyway to get access to this group?
edit: seem like O.martinez is the only one have access to this chat group
Ban reason: Malware. /Thread-Shellter-Pro-v4-7-x86-NOT-WORKING-crack (Permanent)
Posts: 43
Threads: 4
Joined: May 2024
(09-01-2024, 02:06 PM)osamy7593 Wrote: now i opened k.turner messanger acc but no thing useful
IT SEEMS WE can perform phising attack
not sure if you will help you but you can also login to Output Messenger as M.harris, winrm_svc and probably O.martinez but i don't have this user cred yet
Ban reason: Malware. /Thread-Shellter-Pro-v4-7-x86-NOT-WORKING-crack (Permanent)
Posts: 200
Threads: 14
Joined: Apr 2024
Ok u found something?
Ban reason:
Asking for rep is not allowed (Permanent)
Posts: 43
Threads: 4
Joined: May 2024
creds of the 2 first user has been posted here so no i didn't found anything new
Ban reason: Malware. /Thread-Shellter-Pro-v4-7-x86-NOT-WORKING-crack (Permanent)
Posts: 89
Threads: 2
Joined: Feb 2024
(09-01-2024, 12:45 PM)jsvensson Wrote: (09-01-2024, 12:39 PM)x1rx Wrote: (09-01-2024, 12:35 PM)jsvensson Wrote: (09-01-2024, 12:28 PM)x1rx Wrote: winrm_svc pass
from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes
from cryptography.hazmat.primitives import serialization
from cryptography.hazmat.backends import default_backend
import base64
def decrypt_string(key: str, cipher_text: str) -> str:
key_bytes = key.encode('utf-8')
cipher_bytes = base64.b64decode(cipher_text)
if len(key_bytes) not in {16, 24, 32}:
raise ValueError("Key must be 16, 24, or 32 bytes long")
cipher = Cipher(algorithms.AES(key_bytes), modes.CBC(b'\x00' * 16), backend=default_backend())
decryptor = cipher.decryptor()
decrypted_bytes = decryptor.update(cipher_bytes) + decryptor.finalize()
return decrypted_bytes.decode('utf-8')
key = 'b14ca5898a4e4133bbce2ea2315a1916'
cipher_text = 'TGlu22oo8GIHRkJBBpZ1nQ/x6l36MVj3Ukv4Hw86qGE='
print(decrypt_string(key,decrypt_string(key, cipher_text)))
well nice that you shared it but from where did you got:
key = 'b14ca5898a4e4133bbce2ea2315a1916'
cipher_text = 'TGlu22oo8GIHRkJBBpZ1nQ/x6l36MVj3Ukv4Hw86qGE='
From OutputMessenger , you should open it from a windows machine with m.harris credentials . Then you will find a UserExplorer.exe . dnSpy will give you this informations
Damm i thought so, so i should install application and then connect but on which port as i tried on 14123 and it didn't worked?
Try 14121
Posts: 200
Threads: 14
Joined: Apr 2024
(09-01-2024, 02:48 PM)a44857437 Wrote: (09-01-2024, 12:45 PM)jsvensson Wrote: (09-01-2024, 12:39 PM)x1rx Wrote: (09-01-2024, 12:35 PM)jsvensson Wrote: (09-01-2024, 12:28 PM)x1rx Wrote: winrm_svc pass
from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes
from cryptography.hazmat.primitives import serialization
from cryptography.hazmat.backends import default_backend
import base64
def decrypt_string(key: str, cipher_text: str) -> str:
key_bytes = key.encode('utf-8')
cipher_bytes = base64.b64decode(cipher_text)
if len(key_bytes) not in {16, 24, 32}:
raise ValueError("Key must be 16, 24, or 32 bytes long")
cipher = Cipher(algorithms.AES(key_bytes), modes.CBC(b'\x00' * 16), backend=default_backend())
decryptor = cipher.decryptor()
decrypted_bytes = decryptor.update(cipher_bytes) + decryptor.finalize()
return decrypted_bytes.decode('utf-8')
key = 'b14ca5898a4e4133bbce2ea2315a1916'
cipher_text = 'TGlu22oo8GIHRkJBBpZ1nQ/x6l36MVj3Ukv4Hw86qGE='
print(decrypt_string(key,decrypt_string(key, cipher_text)))
well nice that you shared it but from where did you got:
key = 'b14ca5898a4e4133bbce2ea2315a1916'
cipher_text = 'TGlu22oo8GIHRkJBBpZ1nQ/x6l36MVj3Ukv4Hw86qGE='
From OutputMessenger , you should open it from a windows machine with m.harris credentials . Then you will find a UserExplorer.exe . dnSpy will give you this informations
Damm i thought so, so i should install application and then connect but on which port as i tried on 14123 and it didn't worked?
Try 14121
now i'm in but no thing usefull u found ??
Ban reason:
Asking for rep is not allowed (Permanent)
Posts: 89
Threads: 2
Joined: Feb 2024
(09-01-2024, 02:56 PM)osamy7593 Wrote: (09-01-2024, 02:48 PM)a44857437 Wrote: (09-01-2024, 12:45 PM)jsvensson Wrote: (09-01-2024, 12:39 PM)x1rx Wrote: (09-01-2024, 12:35 PM)jsvensson Wrote: well nice that you shared it but from where did you got:
key = 'b14ca5898a4e4133bbce2ea2315a1916'
cipher_text = 'TGlu22oo8GIHRkJBBpZ1nQ/x6l36MVj3Ukv4Hw86qGE='
From OutputMessenger , you should open it from a windows machine with m.harris credentials . Then you will find a UserExplorer.exe . dnSpy will give you this informations
Damm i thought so, so i should install application and then connect but on which port as i tried on 14123 and it didn't worked?
Try 14121
now i'm in but no thing usefull u found ??
No... there are 2 databases in the Output Messenger directory, but as far as I can see, nothing interesting so far
Posts: 20
Threads: 0
Joined: Apr 2024
can anyone give me a hint on how to connect with the output messenger?
I've downloaded the unix client and try to connect with user k.turner@infiltrator.htb and his pw in the AD description but the client stays on sing in...
Also how do you get the port forwarding to work?
Ban reason: Leeching. (Permanent)
|
