"Signed" by Hack The Box - A "Medium" Windows Box Writeup

Table of Contents

Hack The Box Medium Boxes - This article is part of a series.

Part : This Article

Part : "Era" by Hack The Box - A "Medium" Linux Box Writeup

Part : "Cypher" by Hack The Box - An "Medium" Linux Box Writeup

Part : "Puppy" by Hack The Box - An "Medium" Linux Box Writeup

Part : "The Frizz" by Hack The Box - An "Medium" Linux Box Writeup

Part : "Environment" by Hack The Box - An "Medium" Linux Box Writeup

Part : "Cat" by Hack The Box - A "Medium" Linux Box Writeup

Part : "Backfire" by Hack The Box - A "Medium" Linux Box Writeup

Part : "Heal" by Hack The Box - A "Medium" Linux Box Writeup

This box is a “Medium” Windows box by HackTheBox

User flag
#

usual first scans :
#

mkdir scans loot shares
nmap -A 10.129.236.78 -vvv -oA scans/first_scan
nmap -A 10.129.236.78 -vvv -p- -oA scans/full_scan
nmap -sU -A 10.129.236.78 --top-port 100 -vvv -oA scans/first_scan_udp

1433/tcp open  ms-sql-s syn-ack ttl 127 Microsoft SQL Server 2022 16.00.1000.00; RTM
| ms-sql-ntlm-info: 
|   10.129.236.78:1433: 
|     Target_Name: SIGNED
|     NetBIOS_Domain_Name: SIGNED
|     NetBIOS_Computer_Name: DC01
|     DNS_Domain_Name: SIGNED.HTB
|     DNS_Computer_Name: DC01.SIGNED.HTB
|     DNS_Tree_Name: SIGNED.HTB
|_    Product_Version: 10.0.17763

Okay so this is probably gonna be very mssql-centered like the previous week I guess, and we can confirm the provided account is valid :

The content of this article is currently restricted due to HackTheBox’s policies. This blog post will remain private until the machine is retired. Have fun and don’t hesitate to DM me to ask questions on Discord (through the HTB Discord), Linkedin or on X ;)

In the meantime you can follow me on HTB :