Network

Tuesday 17 December 2024, 06:41  #1
Network (Kerberos - Authentication)
deuszera
deuszera
  • 2 posts

I actually found out the password used to authenticate the user. However, when I submit the flag in the requested format (i.e: RM{userPrincipalName:password}), it doesn’t work. How can this be?

The user name is something like `user.name`, I even tried submitting as `userName`, or prepending a underscore to the flag (RM_{userPrincipalName:password}) or interpretting "userPrincipalName" as the user’s first/last name only: no success in any case.

I feel like I must be doing something really dumb, since I got the "hard part" but can’t finish it.

Tuesday 17 December 2024, 07:31  #2
Network (Kerberos - Authentication)
Menyu644
Menyu644
  • 1 posts

Spent some time on this too, finally found the right flag, try the following entry:

RM{userPrincipalName@domain:password}

The domain must be written in lower case letters. The username does not change in any way, i.e. as you wrote “user.name”

Tuesday 17 December 2024, 12:10  #3
Network (Kerberos - Authentication)
deuszera
deuszera
  • 2 posts

worked, thank you very much!

New reply New reply   New topic New topic