Kohsuke is the forename of the dude who built Jenkins

This video is a goldmine for windows enumeration and reverse connections. I bashed my head around for about 7 hours running different jenkins jobs and just ended up with user flag lol. Thanks for putting this up.

Well i decided to dig a bit deeper in this category of computer knowledge, but nowhere in any free course is much shown as you did in your single video, thanks for posting!

To get the root you can simply do more < hm.txt:root.txt > output.txt

wow what a interesting way to get the first flag i executed groovy scripts to navigate to the user.txt file

Just a suggestion: to connect with the hash you also can use psexec.py instead of pth-winexe passing the hash with the parameter -hashes, like this: psexec.py administrator@10.10.10.63 -hashes aad3b435b51404eeaad3b435b51404ee:e0fb1fb85756c24235ff238cbe81fe00

Thank you dude for your time and your channel ... keep it up

IppSec , please explain the reasoning behind taking one route or not taking another route in getting to shell and getting to root. Your video shows a different way to get to limited shell and I appreciate the teaching. Your method in getting to limited shell may not be the most straight forward in this Jeeves video but it is definitely enlightening and I think this is what many people hope to learn from your video. A different way or non standard way to get to limited shell. Another reason why your videos are popular is because you usually explain the reasoning behind taking one route or not taking another route in getting to shell. I wonder if you could explain your thinking behind not using the output of Windows Exploit Suggester for dealing with Jeeves since this Suggester tool looks like an important tool for dealing with Windows boxes. Is it because the output of Windows Exploit Suggester is a rabbit hole? And if yes, in the future please explain why the output of certain tools are sometimes rabbit holes while most of the times they are very useful so that we know what to look for in using those tools. Thanks a milllion.

Hi during the write up of conceal (10.10.10.116), you used JuicyPotato to do the privEsc. It seems that I can't make JuicyPotato work to this machine even if the flag setImpersonatePrivilege is set to yes. In theory, everything that RottenPotato can powned should be pownable by Juicy Potato too, right ?

Thx for the vid... Take care of u man. You seems a bit off /tired. Super appreciate it anyway.

IppSec YOU ARE THE BEST :)

man you should write a book on pentesting

You can "yank" the line in `vim` with `yy` to copy an entire line :)

How much time did it take for you to finish the box?

This was a bit of an unstable box ... cracked it yesterday after playing with power shell for days, used the noisy method of getting a metepreter Shell On my initial scan, port 445 was closed so had to use port forward to execute the pass the hash attack to get root. Interesting box but to slow / unstable 😏

@ippsec - Curious where is your lineage accent from?

Just to let you know you entered the CEH.kdbx as key file and not as the database at 30:08.

Finally. I despise this machine. Made me rage quit so many times.

Wanted to watch video of tally.... Thought it would be available this Saturday.. please make tally...only you can make it.

Awesome content! Amazing tmux skills! Can anyone explain the difference between rotten potato and juicy potato for Windows priv esc?

THX for video ...but i was in Jevees when he retired :(

Hi, How did you identify the version of jenkins used

when do you do reverse_https and reverse_tcp when creating msfvenom??

where I can download all the opt folder that you showing here?

Where to learn your skills in hacking

hello again i gave a problem when i start scanning mith kali my connexion drop can you help me pleases?

I use EvilRm PS instead of normal Powershell . Downloading and Uploading with it is very easy. I am binge watching all the windows machines IppSec why don't you use it in your videos?

more < hm.txt:root.txt

meterpreter > list_tokens -g [-] Error running command list_tokens: NoMethodError undefined method `config' for nil:NilClass anyone run into this issue?

cant we use notepad hm.txt:root.txt?

Do a video about you, and what you do. Put a face to Ippsec.

This is seriously fucking frustrating... I've just started doing these retired machines only to find out that they have been changed so when I go looking for hints to help get past points of being stuck the fucking hints are no longer valid because it became a good idea to change the fucking configuration on the machines. Back to the drawing board now that I've gotten that off my chest. Or maybe I'm just tired it's after 3am and I've been up since 3am the morning before. Target machine won't connect to the smb share I created. HELP!!!! taking a nap maybe later in the morning I'll figure it out.

I hateeeeee this box

Man I went totally wrong on this box - here's where I got stuck offsecnewbie.com/2018/05/17/jeeves-hackthebox/

Bro please help me to decode the .Txt file in poison which is ecoded 13 times.. I tried many different things but I don't think I am on the right track😑

I don't know you are awesome but you are overthinking these machines and can't do a straight forward walkthrough . As much I love your style,it's too hard to follow your videos.

For me, potato attack does not work with the given tools in the video i.e. rottenpotato.exe, No impersonation tokens available always. But I manages to get a nc rev shell with juicy potato.