This may be dumb but I was thinking last week about if someone instead of attacking the box, starts scanning the people connected on the VPN.
Then, if a dude is unlucky and has ssh with kali:kali password open, an attacker can enter his VM and read shared folder and get a foothold on the player internal home network …
I beleive HTB must provide some security no ? I fail to see how they achieve it (not a pro in openvpn internal) …
I’d imagine there will be something in place to prevent this same as in an internal network where you can stop Vlans from talking to each other. Secondly a vm can be set on its own network isolating it from the rest, there’s multiple ways to prevent this from basic segregation to more advanced techniques and additional firewall configuration im pretty sure considering the expertise of the guys and gals running the show they’ll have had this thought and put in preventative measures
My dude is not a dumb question is totally valid, and long time ago I think about this and find this info in the htb forums:
So short answer, you’re in a hackers playground, get secure, don’t let anything on your side with default parameters and monitor your incoming traffic.
If you’re worried about that, it takes about 2 seconds to either change your password or ssh port
pretty sure it says right on the htb vpn pages, that you WILL be exposed to others using the same lab/play area or something to that effect. Haven’t been on in a while (looking to change that) but iirc it says “make sure you’ve taken basic steps before connecting, and we recommend a VM not directly connecting from your ‘real’ computer”.
If you’re on a real pentest and someone (a blue team or another attacker) sees you and you still have kali/kali creds, are you going to cry to the company their VPN didn’t protect you?
chefs kiss!!! excellent question!!! I was never able to detect anyone else in the same range at all. I’m not sure how or rather what they use to wall each other off but they do seem to.
I think each user is isolated in their own virtualised vlan instance. So even if you try to enumerate the HTB network you won’t ever see other users connected.
If the machine you attack is shared with others, don’t see what is preventing someone connecting to you from it.
Are you supposed to access htb via virtuelle Maschine? Perhaps even a vpn?
I have messed with a friend who was doing the same box as me. No, it is not “secure”. But you should be using a throwaway is install via a VM or dedicated system that gets wiped often.
Not to mention, I’m pretty sure it’s also against hacking the box use policy to go after other people’s IPs, and I’m sure they monitor traffic to make sure people don’t attack other people.
Nothing stopping you from getting to them after you rooted the box and using that