So far I managed to do a couple of modules, including some intermediate ones and sometimes got stuck but always managed to ‘soldier’ my way through and proud of that. But now I’m really stuck in ‘Attacking common services’ – SQL -> first question ‘What is the password for the “mssqlsvc” user?’.
Things I’v done:
Extracted the hash for this user (format mssqlsvc::WIN-02:3d5ddadaf62b17b6:386CB00…002E00310035002E00390037000000000000000000).
Tried to pass it with xfreerdp and sqsh (domain not trusted)
Tried to crack it with the pasword list in the cheat sheet (no results).
I’m certain that I’m overlooking something obvious or maybe I have done the rigth thing but that it went wrong because of something else which let me think I already did that and didn’t try it again.
Anyway, some hints to the right direction are greatly appriciated.
1 post – 1 participant
Read full topic
Source: Read More