Mission LIVE WIRE

Spoiler: after doing the rest of the mission

To find the username, should I be trying variations based on the provided user's name (it doesnt seem to follow the syntax of pervious usernames, and I've tried a number of iterations) - or is there a different user I should be targeting? *edit* - just to expand, I found the password for Dr Nathaniel and nothing happened, leaving me with Samantha, but I cant seem to find a viable username for her -

 

i need help with this as well because brea's username is not bsetterlund

 

The actual user name is...

Spoiler

breasetterlund

You need to use a certain tool with one of the superterram.org domains.

 

I can't find the domain to do a password attack. Any hint?

 

How did you find the domain to attack?

 

Spoiler

I did a sfuzzer attack on superrterram.org after getting into their network. It gave me 5 domains i tried them all but non worked for the password attack.

 

Spoiler: I did the same thing.

how did you find the domain superterram.org? Did it definitly read just Superterram.org?

 

Spoiler

did you get into unity7 network?

 

I've already completed it, but was hitting the exact same wall as you for about 2 days.

Spoiler

I'm guessing you found it at monitoring.unity7, what exactly did it say?

 

Spoiler

after fingerprint the 4 ports in the technology section it gave me these:
backupserver
brea-sip
superterram.org
DynamicsAX2012

 

Spoiler

are you sure it wasnt wmi_superterram.org?

 

Thanks mate.

Spoiler

it said wmi_ in front of all of them.

 

I've done the password attack but the mission is not completing! Is that okay?

 

I'm not finding the proper target URL.

Spoiler

I found the Superterram connection at monitoring.unity7.com, so I swept Superterram's subdomains and all that, broke into the fileserver, yadda yadda. Brea Setterlund's the only Superterram employee we know and there's a SIP named after her in Unity 7's stuff, so I figure her company username's breasetterlund. They don't seem to have a dedicated e-mail server, but there is intranetsuperterram, but when I try that I just get "USER NOT FOUND". When I try intranet.superterram to try and bring it more in line with the usual addresses (on the off chance something was just typed wrong), I get "No active host / proxy". Based on these discussions, I tried wmi_superterram.org, but still "No active host / proxy", whether I'm trying to access the network through Unity 7's root or Superterram's file server. Is there some other vulnerability I'm missing?

 

Spoiler

Try to find subdomains of wmi_superterram.org

 

Spoiler

Wow. I had the exact same problem, but makes no sense to me why it is stored under this EXACT url.

 

I did that? but the mission isn't completing.
EDIT:
It turns out that i accidentally messed up mission 'Live wire' with 'Blocked Off'.

 

Spoiler

Same, especially since the other WMIs attached to monitoring.unity7network had a slightly different format. Seeing as the fingerprinter treated it like a piece of tech, I just assumed it was some means for Superterram to communicate with Unity 7; I hadn't even considered that it might have subdomains of its own. Though I admit, in my desperation I did once try port-scanning wmi_super..., and though there weren't open ports, the scan did work, so maybe that should've told me something. I should really get around to looking deeper into all this network stuff. Thanks, guys!

 

huh, ok, so I'm in superterram's server, have a likely username (or can try variants of), but can't for the life of me find an email server (portal.superterram.org is giving me "form not found"...) any nudges would be appreciated...

netscan seems like it would be a likely tool for this but i can't get netscan or dig work

Spoiler: a small advancement so i guess its maybe a bit of a spoiler

intranetsuperterram seems to work, but now its coming up "user not found" for my usernames... so do i have a username or url problem..?