Team Information
- Number
- Team 15
- Name
- Jayhackers
- IP Range
- 159.75.35.0/24
- Domain
- team15.isucdc.com
- Current Place
- 11th
- Red Teamer(s)
- None
Flag Status
| Blue Flags |
|---|
| AD C:\Windows\System32\ TICKETS C:\Windows\System32\ MGMT /etc/ ADMIN C:\Windows\System32\ WWW /etc/ TICKETS Forged ticket MGMT DB Read MGMT Bus service MGMT Train service |
| Red Flags |
|---|
| AD C:\Users\Administrator\ TICKETS C:\Users\Administrator\ MGMT /root/ ADMIN C:\Users\Administrator\ WWW /root/ |
Service Status
| AD LDAP |
| AD RDP |
| AD LDAPS |
| TICKETS HTTP |
| TICKETS RDP |
| MGMT HTTP |
| MGMT SSH |
| ADMIN HTTP |
| ADMIN RDP |
| WWW HTTP |
| WWW SSH |
| ADMIN Login |
| WWW Login |
Nmap
=========================================
📁 Folder: ./team15
📄 File: secretdumps.txt
=========================================
Impacket v0.13.0.dev0 - Copyright Fortra, LLC and its affiliated companies
[*] Dumping Domain Credentials (domain\uid:rid:lmhash:nthash)
[*] Using the DRSUAPI method to get NTDS.DIT secrets
Administrator:500:aad3b435b51404eeaad3b435b51404ee:ff59ea88342e12c3d174fad492679275:::
Guest:501:aad3b435b51404eeaad3b435b51404ee:31d6cfe0d16ae931b73c59d7e0c089c0:::
krbtgt:502:aad3b435b51404eeaad3b435b51404ee:7517df16085cd6675884bb3ac5586b9c:::
DefaultAccount:503:aad3b435b51404eeaad3b435b51404ee:31d6cfe0d16ae931b73c59d7e0c089c0:::
melissa.robles:1107:aad3b435b51404eeaad3b435b51404ee:fe289db136ad4fc19b02bd32a73b30c3:::
roger.cox:1108:aad3b435b51404eeaad3b435b51404ee:64fbc86a77c0d4154070093c8c511397:::
edward.matthews:1109:aad3b435b51404eeaad3b435b51404ee:a6a1440e2dc6ba4f7187ea7054340202:::
joy.newman:1110:aad3b435b51404eeaad3b435b51404ee:3b6acde2a52b85cc7478a0cf5c3910b9:::
andrea.hall:1111:aad3b435b51404eeaad3b435b51404ee:4775505f379d8458e38134311011e815:::
geoffrey.mitchell:1112:aad3b435b51404eeaad3b435b51404ee:ae147504baa65f6cb532a3617a375497:::
joann.wilson:1113:aad3b435b51404eeaad3b435b51404ee:5ca1aea2a367758ad1c79b19b687e669:::
leslie.brady:1114:aad3b435b51404eeaad3b435b51404ee:6c8af32cee576cce1858717ca0146851:::
michael.miranda:1115:aad3b435b51404eeaad3b435b51404ee:56b98453f23daf8db103efe6607c03c7:::
krystal.gray:1116:aad3b435b51404eeaad3b435b51404ee:dfeb6f127bb73feb4332840960c4c31d:::
team15.isucdc.com\webloginsvc:1133:aad3b435b51404eeaad3b435b51404ee:576b03ea421ac37ef7724f00b7184a6b:::
team15.isucdc.com\123:1134:aad3b435b51404eeaad3b435b51404ee:3dbde697d71690a769204beb12283678:::
team15.isucdc.com\tompohl:1135:aad3b435b51404eeaad3b435b51404ee:2ed14c09e4342b6697ad42b04ed86068:::
team15.isucdc.com\kilroy:1136:aad3b435b51404eeaad3b435b51404ee:85c41b2c2346f33b299470a52bbd54d7:::
team15.isucdc.com\sam:1137:aad3b435b51404eeaad3b435b51404ee:8b2da06b3c2936a1bc988b4dcccc18b2:::
team15.isucdc.com\sarah:1138:aad3b435b51404eeaad3b435b51404ee:0c26eda8f58130f92090f35453c48ae8:::
AD$:1000:aad3b435b51404eeaad3b435b51404ee:a2f61c7a2d3b4f28fac2f5709c432ac4:::
TICKETS$:1117:aad3b435b51404eeaad3b435b51404ee:082557997c3955570ec61304b3951827:::
MGMT$:1118:aad3b435b51404eeaad3b435b51404ee:610659996636203f8b779997373688d4:::
ADMIN$:1119:aad3b435b51404eeaad3b435b51404ee:fdc7990ae69e59c78ded0cdea8ed6065:::
WWW$:1120:aad3b435b51404eeaad3b435b51404ee:f6a06d4796f0323ba4c1e3fc227c292b:::
[*] Cleaning up...
📁 Folder: ./team15
📄 File: secretdumps.txt
=========================================
Impacket v0.13.0.dev0 - Copyright Fortra, LLC and its affiliated companies
[*] Dumping Domain Credentials (domain\uid:rid:lmhash:nthash)
[*] Using the DRSUAPI method to get NTDS.DIT secrets
Administrator:500:aad3b435b51404eeaad3b435b51404ee:ff59ea88342e12c3d174fad492679275:::
Guest:501:aad3b435b51404eeaad3b435b51404ee:31d6cfe0d16ae931b73c59d7e0c089c0:::
krbtgt:502:aad3b435b51404eeaad3b435b51404ee:7517df16085cd6675884bb3ac5586b9c:::
DefaultAccount:503:aad3b435b51404eeaad3b435b51404ee:31d6cfe0d16ae931b73c59d7e0c089c0:::
melissa.robles:1107:aad3b435b51404eeaad3b435b51404ee:fe289db136ad4fc19b02bd32a73b30c3:::
roger.cox:1108:aad3b435b51404eeaad3b435b51404ee:64fbc86a77c0d4154070093c8c511397:::
edward.matthews:1109:aad3b435b51404eeaad3b435b51404ee:a6a1440e2dc6ba4f7187ea7054340202:::
joy.newman:1110:aad3b435b51404eeaad3b435b51404ee:3b6acde2a52b85cc7478a0cf5c3910b9:::
andrea.hall:1111:aad3b435b51404eeaad3b435b51404ee:4775505f379d8458e38134311011e815:::
geoffrey.mitchell:1112:aad3b435b51404eeaad3b435b51404ee:ae147504baa65f6cb532a3617a375497:::
joann.wilson:1113:aad3b435b51404eeaad3b435b51404ee:5ca1aea2a367758ad1c79b19b687e669:::
leslie.brady:1114:aad3b435b51404eeaad3b435b51404ee:6c8af32cee576cce1858717ca0146851:::
michael.miranda:1115:aad3b435b51404eeaad3b435b51404ee:56b98453f23daf8db103efe6607c03c7:::
krystal.gray:1116:aad3b435b51404eeaad3b435b51404ee:dfeb6f127bb73feb4332840960c4c31d:::
team15.isucdc.com\webloginsvc:1133:aad3b435b51404eeaad3b435b51404ee:576b03ea421ac37ef7724f00b7184a6b:::
team15.isucdc.com\123:1134:aad3b435b51404eeaad3b435b51404ee:3dbde697d71690a769204beb12283678:::
team15.isucdc.com\tompohl:1135:aad3b435b51404eeaad3b435b51404ee:2ed14c09e4342b6697ad42b04ed86068:::
team15.isucdc.com\kilroy:1136:aad3b435b51404eeaad3b435b51404ee:85c41b2c2346f33b299470a52bbd54d7:::
team15.isucdc.com\sam:1137:aad3b435b51404eeaad3b435b51404ee:8b2da06b3c2936a1bc988b4dcccc18b2:::
team15.isucdc.com\sarah:1138:aad3b435b51404eeaad3b435b51404ee:0c26eda8f58130f92090f35453c48ae8:::
AD$:1000:aad3b435b51404eeaad3b435b51404ee:a2f61c7a2d3b4f28fac2f5709c432ac4:::
TICKETS$:1117:aad3b435b51404eeaad3b435b51404ee:082557997c3955570ec61304b3951827:::
MGMT$:1118:aad3b435b51404eeaad3b435b51404ee:610659996636203f8b779997373688d4:::
ADMIN$:1119:aad3b435b51404eeaad3b435b51404ee:fdc7990ae69e59c78ded0cdea8ed6065:::
WWW$:1120:aad3b435b51404eeaad3b435b51404ee:f6a06d4796f0323ba4c1e3fc227c292b:::
[*] Cleaning up...
sam sam12345 8b2da06b3c2936a1bc988b4dcccc18b2
sarah sarah12345 0c26eda8f58130f92090f35453c48ae8
tompohl Qweasd123! 2ed14c09e4342b6697ad42b04ed86068
123 123 3dbde697d71690a769204beb12283678
geoffrey.mitchell rev062cab ae147504baa65f6cb532a3617a375497
andrea.hall zut726guk 4775505f379d8458e38134311011e815
joy.newman mik164vuv 3b6acde2a52b85cc7478a0cf5c3910b9
roger.cox yup319mil 64fbc86a77c0d4154070093c8c511397
edward.matthews cac219qiq a6a1440e2dc6ba4f7187ea7054340202
melissa.robles doh694kop fe289db136ad4fc19b02bd32a73b30c3
sarah sarah12345 0c26eda8f58130f92090f35453c48ae8
tompohl Qweasd123! 2ed14c09e4342b6697ad42b04ed86068
123 123 3dbde697d71690a769204beb12283678
geoffrey.mitchell rev062cab ae147504baa65f6cb532a3617a375497
andrea.hall zut726guk 4775505f379d8458e38134311011e815
joy.newman mik164vuv 3b6acde2a52b85cc7478a0cf5c3910b9
roger.cox yup319mil 64fbc86a77c0d4154070093c8c511397
edward.matthews cac219qiq a6a1440e2dc6ba4f7187ea7054340202
melissa.robles doh694kop fe289db136ad4fc19b02bd32a73b30c3
Private signing key for tickets:
MIIMVwIBAzCCDBMGCSqGSIb3DQEHAaCCDAQEggwAMIIL/DCCBh0GCSqGSIb3DQEHAaCCBg4EggYKMIIGBjCCBgIGCyqGSIb3DQEMCgECoIIE/jCCBPowHAYKKoZIhvcNAQwBAzAOBAhyKJGZFI+nCgICB9AEggTYB5fk9XHBYvItMhH+4MCrx9YTiY/ueWRk3cJYO3dyTvO3xpxYY03ubkONN/U5Y27HW5ff9LOi3X23RVCM8QSV8edO9zUJBezIJYQ4PMLVuGho0zo2U4RXtnlN+9Qz3B5V5tnHNE19n5mo/LEAome5SQJ9yy9hqeD4HX3ckRM8nzuExplXlajbO8jlzt59i0G3yjTQWLCSKIXO7GUHuGPbnrQbhCpX2P0SizlQpzjOew6utnTrAH6sPe1LGX/wjPzJgBIYM8Y/d0gfbh5IeBniU2N47dlHOyxhFtLFtd6+BKVs7cloczdXIWccvEYrPLxPbgWPS7/BM3VqBs1cuFYv70+sBEfiOr2v6rqTHAsTlLd7kPs5CoW8++IGYN57AwrAuHm4cVtxJUTibx5qxllJ+SeqcmWx65MMw3TxeIHoKXcoXGCt1kVJd6o4773SKWiUYPf6W0Ffr54SdUoyb46W/H1CBAiaMA8/L8edmA3DLeBEtc8D/UWmvzNA7hNADByGEUarJLpgIQkcnrE2uU8S7gecSxhKlVHXUSLieHQ+iH0c3uVde/imi+Rr8XOnVsbtexibxR8QBrdkV+vWulmVovVrWQn5o5MlHboFisOLOHFXBjqQ9eAezDdN+bz2DeEA5XDc3L8VtCmtF9mdxsvyp/nxyBny18rRVT96LEaSxih9w/i0yK4MT+Zt7DNOBoIQpL6EOMVXVbYBJpji5y7JGSMKYhJd9ceV3lnt7zAItLcMvQYL91SaROl/BJBLVqUF55PKET8W7vaNGD8yX7Vi5BOOY79MGq4hopPjYExlmaqqqi/lzMHtKq5jJBRU6qjEILXKOF7amdefCpUkH7WhrdkAZxNvRczq+MJSGrn1qguygIzfQy4jslbSO0RiF1rxmfJroxewZieeBTTh4m17QLTKtvVdF72WaozsSVGh2e3jfdfh1DTdEvtVX0dTQOu4pAJFGqUBBN0BlgBUTkeNWzf/0yx5OTHu9nwo/q34BVTa6ovDugMb01y2IhhgvWtKqpRR6OLSsVIGWyS2G3a6xKqC5hNpQK5oxI8PR0gtrBFJrNZYSjfM+bT51rotbksETotX1m2LYBtjjuy6cHac5Q7LKXJ4e8YYoE+6tmn2qe7CysdsrIC6ISuwLDSZplz+2T20IVjk5iExahtP7uHRm61wN5dVJMH6z9isv9sj31NyF04gGYXV3YHD0nBIA4yWaJ1kYJ2DRvH9WDQn5lkTS26VQDiC24KmDPaK/pBzF5mpszpphJElE4TQAG36PvDTrGzwm7s6ty5NkSJUpsI4ZmyL8iaGxhf7PD5RZy+Oo6CDrVDAlJGZ3+ghE+cW5di1a9vye1PvNCAI+DYRTbckQMl9L1JLTP7agbybe8/8ioSSY9NIawmvj/97ULQOh2q+AKwcDVgC+95W7tgzh9YH2OpUyoo82+6Gll5NrqulV0HX1OVPSrPx3NyTltOVJV3QynJuuiMur3fgg7rHM/2XWYDzwhNpmtO2YvlNOYJVU/7oRAgzz780q6VIGa4LwEtXeT3bWjFJB9/nDFwB1MtideWiRxQXQSBM/QOraoDiDPz7gS9yjb67vHz+XTh0sze6Ni77OzJ6Y5NI06OHfUEKWxxsI7wf7xkG35ZnRmy3mGkWnK+960ftZTGB8DANBgkrBgEEAYI3EQIxADATBgkqhkiG9w0BCRUxBgQEAQAAADBdBgkqhkiG9w0BCRQxUB5OAHQAcQAtADYAYQAzADIAMQA4ADAANwAtADkAOQA2AGIALQA0ADEAOQA2AC0AYQBiADQAMgAtAGEAYgAzAGIAYwA1ADQAOAAyAGUAYQBmMGsGCSsGAQQBgjcRATFeHlwATQBpAGMAcgBvAHMAbwBmAHQAIABFAG4AaABhAG4AYwBlAGQAIABDAHIAeQBwAHQAbwBnAHIAYQBwAGgAaQBjACAAUAByAG8AdgBpAGQAZQByACAAdgAxAC4AMDCCBdcGCSqGSIb3DQEHBqCCBcgwggXEAgEAMIIFvQYJKoZIhvcNAQcBMBwGCiqGSIb3DQEMAQMwDgQIxSkHsqmxzI0CAgfQgIIFkKW3Gj4kJ0pCNa8xuEIdbNk9822uN1+/ZA2zJzR76kCiuZo3lsi8JTluibCWGK9crEFVrnaH0OQVDZa/QHxku/BgRtE++GvYPCS71Z8FT0Wle40vzKNZAO0rIs4cFWHwecH93C/XEPqC9EkrA8IpWVry//bhjgM7LsAHcbOKet7kJ8Zq0PuIdK8dZnZ/Qqvoy9mDlX49AIifW3GKdRCp253o+x0qAjzfWtHYfHmmVPRg61MpzfrRoPDyLCunHLw+JaQVn2cC3i4lefyBNex8E8ysgc1Xca7EDxKqoYmTcgg30ct0RbF/aYC5uUAfyMXPb77bFjkqThfOznGFwLujyHHvmS5lfBs2H8FNbtwss47/F8li1QqH8EjCu58AUJDqjH6D69vUbUSJL1MnHZPh4Stt37Oqqhn5MLyfitWaOjmBP5Lzl21oQe86rQaOB3zsWmltNGjx41/mZu0G2tA3KG+gzeU2myphizJ5EZkLevlDWvhPyefiZzruDagKbPqCuA4sbwgQVwz+jroVjRjt0/bzNxHX5UqiE/gHs+b2Tr5aGVWph442XD5w5YWspdlcPXPJJ8uWKmo9jY5sKxC+2kGjGBYgQXlcdVHO/wJy58VVOyJU4DAXz9dcR7tMmMeDdbUYbUEj0wXvfv1puxdDXq7S9+3d2RW0g4lw+kY6RrWvraCC1pmsRxQK7HcL+ZP6ak/04qOX+7SfLTwdP8lL+yyOnbkOkiu8LRKtcGKBRGpanFe8WQHedz2LX9sZsA4Rx8G4IWCG7uNCfgrNLQKvk9lhiTYDa8TM3cYjAwI6U/jHyGRRiI+co0LrOV+r0K3V7txwwHWctiPsx3ADUyYAGnSKW1qh7bJ1MzF/EJGOMHUAyezqY2hMN1+J1KEDmuWgExur9ZqPpSXryPkMZOkAxh87a260OJTZBAk43Vm/do9a/kIxsBZAjJmqQnlz5hLOli/N7+VpJ027Wz+gW8JAcLTyzxdaSFMki51JTmsT4zutpK3Ee5lW1KnH3plDsMasTneXDOMIljENdNGW7B/v+HZL35voUrdekwXP4WQWVqtwH/Te9yIv0smR19OiLGOH3LZPsiGtbAw2NgBqX4ff67rvPnjP7kalfJO2f5rIWUk1W1Jr4zuLsgpWWRdJhC8oyfCHqy2xZgdvRsx9+1VLUVPzXXzkY7nCnHJ9aL9Lb5Bvi2ub5q8q+iEDmsdFl5Hb7iiau/h4eu9iklwXaJr4Kh7TKCZdW4NdhENhFq6R5lNdoxkL00SFIi11FSyN44bFu5GobcuD43q0J2iWzlDHyVlMFrz1NuUBmDBt7IUsXCpImLCHG7Z6E0xADD/qPm9xFYunAF1svKhdW58HXG9t8wgQtRh/MFixCuMTmZRwLJlU1WOBr6O/0D/LCEwCI8pYg7y+3zsAq71jV6sT4ejG4UoqfwpYzIW8TSbuoEWKp0vl6D5EbuZmPO3kzBKHnijrFTCpMOz+OilOvCV1MLsoFwEed4FIwWNbY1a+l6K54LNTPl7z+fNzILkbCekQalSjQgh3WtX2wDzE4VyNQz6wVc4yGbJMmEG7/TKODVzf1sS0B+pnEntPwUMXJwxMP7LKI1FyrnaMOAhL3qiYrr+ujZpE87uenN5hrYeQ9kH9bCbgZaFemFQSMQTEmNSe73a52TMfgYtxzpz4/vjh6KHG6xUlRtdFrr+KJ0m6cb8bd/cD5PpYTftvjqsjr34MO33MetvAqwJYh/fs16+H7yTY3dBRQNt9KDU2UKhTxHw0JWT8YZYVeAsBUQw8Kw2QgjGirogILSvjoS2iJWIpLwKoaS5yxzSzOiYHr2EdbAFceFFklYBOItYi1ZaCZ6jJ+4riCM/DRvAvA4/tq+pFNFGfnKgFG/45uPk6jmoUF3NP3FKlMDswHzAHBgUrDgMCGgQUG80Sq+BBJAj/g5S6x/NhgAaMlccEFANb2kDyx3V0dpXG34XzqF8wAkqQAgIH0A==
Notable Vulnerabilities
Add content here...
Notable Defenses
TEAM 15
────────────────────────────────────────────────────────────
[Team 15] MGMT backend online (HTTP 401)
[Team 15] Ticket forge: no flag (patched)
[Team 15] DB flag: not accessible
[Team 15] Auth bypass: all users rejected (LDAP patched)
[Team 15] Vehicle flag (bus): not available yet
[Team 15] Vehicle flag (train): not available yet
[Team 15] Admin UI online
[Team 15] Code-server: not accessible (patched or blocked)
[Team 15] Attempting Werkzeug persistence on MGMT...
[Team 15] Werkzeug RCE not available (patched)
────────────────────────────────────────────────────────────
[Team 15] MGMT backend online (HTTP 401)
[Team 15] Ticket forge: no flag (patched)
[Team 15] DB flag: not accessible
[Team 15] Auth bypass: all users rejected (LDAP patched)
[Team 15] Vehicle flag (bus): not available yet
[Team 15] Vehicle flag (train): not available yet
[Team 15] Admin UI online
[Team 15] Code-server: not accessible (patched or blocked)
[Team 15] Attempting Werkzeug persistence on MGMT...
[Team 15] Werkzeug RCE not available (patched)
Team Spirit Issues
Add content here...