21 hours 43 minutes
Welcome to the command line lab walkthrough.
All right. So first things first, let's open up a terminal.
There's a hint there Z. S. H. Corrupt history file. I wonder what that could be.
Flag won the Commander display, etc. Password. So if you want to display it, we can cat it right
at sea password
and you'll see flag one here.
Flag to the commander. Show all running processes. Ps aux.
Now this may cut you off the
the terminal window.
I always like to grab things. Let's grab flag.
And we see that there we see it in a few places. Flag too.
The third flag is the flag that deals with when So I talked about Cron tab.
So you do crunch tab
and you can see flag to is in there because it's running right? It's running process and flag three.
You also do Cron tab. L
and that will show you without having to edit it.
Alright, hidden in route.
So if we look we're en route
and if something's hidden,
we do L S L A.
So we see the dot
means hidden. So if we cat
flag we see that flag four.
Flag five is let history be your guide
And we see in history # four,
it's like five.
So that is Lennox. All five flags.
All right. We are now in Windows.
So I said use a net
on your users. So Net users, we should see
we have net user one. That's us. Right?
And the comments you find flag number one, that's flag one.
Fine running services.
It's a little tricky. You can do task list, but you have to specify S V C.
And that goes pretty fast. So if you want you can do fine string
And you see it there.
Spc host is also called flag.
You can also use power shell on this if you want.
You can do get
I didn't like that
because it's fine service. I think
there you go. Flag. So another flag
This one's hidden on someone's desktop. So we can exit out of power shell.
Now you don't see the PS
so it's hidden on someone's desktop. Let's try
User 1's desktop. So I remember d
with the switch a
There you go. Flag three. You can also view the file contents by doing flag.txt.
This flag three.
And the recursive director research is flagged for so you can go all the way down
to the route and do D I R.
Flag and we can do a wildcard here. She showed us a bunch of flags.
So it shows us flag for an app data.
Now, if you wanted to again, you could do take this
flag four dot txt this flag for
All right. So those are all nine flags