Please subscribe to get the latest videos www.youtube.com/@djalilayed
@canaldoreno Жыл бұрын
hello friend, this is reno from brazil, I really enjoy your class on gain priveesc using tryhackme resources, and the silent install, and AlwaysInstallELevated, much appreciated the time and effort you put into this even with a little flu going on! thank u for showing me your method on this one, is really cool. Thank u for the lessons comrade.
@djalilayed Жыл бұрын
@@canaldoreno Thank you for the support,
@Zen_Monkey Жыл бұрын
Dang...I was just missing the correct username of the SSH key. I had that stashed away from the SMB but couldn't figure out username. Totally missed the "-lowpriv" from the filename...now I'm SSH'd into the windows box and feel confident I can move on from here. I had gotten into the reverse shell of the WSL system, escalated to root, banging my head trying to figure out how to escape to the windows system. Thanks for this video.
@djalilayed Жыл бұрын
Glad video help, there are couple of ways to solve this room, if you go the root escalation road, you do not need need windows privilege escalation, there is a way to get both flags. other option is windows privilege escalation, again here there are couple of options, the way I did it, some on tryhackme discord said they used Metasploit, other use different approach to get win priv but same technique used on Metasploit.
@djalilayed Жыл бұрын
Check also this approach from @TheTaggartInstitute of getting new instance of Jupiter to get root terminal kzbin.info/www/bejne/d3rWeJirhbmZfq8