I've never even seen/ taken the exam for CPT, so not breaking any rules by offering this advice (might be useful, might not, so take it at face value.)

Look for services, website scripts, or bash scripts, that might connect from the server you already got root for, to the other box.  Perhaps one or more of those will contain a noteworthy password.

Called ICARB and asked about an extension on this as I technically have 2 days to get this last part and to look over my report and make any changes and get it turned in.

Thanfully they granted me an extension.  Whew....

No you guys have bene great and I try to not ask specifics about the exam but rather the tools.  Again no experience and I am at the limits of my knowledge but with Seph guiding me to read stuff over again, the youtube videos etc it's helped a lot.

So I am learning so much and I am really excited. So excited and want to get back at it that my mind has not been where it should be.  I've been thinking about what I need to do with JTR and hydra to get it to work and different combinations of the syntaxs that will get it to work faster.

Most of the tools I have are CMD and that's where I have a hard time understanding how the order of the CMD's.


In regards to the instructions, it says to do a MiTM attack and I did that but it didn't work SO maybe i am doing it wrong.  But they also said that can be used to only get one of the Root passwords, not both.  So I already got one and with some more hard work and determination I will get it.  I just want it now.  But making me earn it and work for it will make it that much sweeter once I crack the root psswd.

I would remove the specifics above about the MITM attack, to keep from spoiling any1's fun.

if I am correct, you already got the password to the VM you were "given". The other one will require determination, and/or the right wordlist. one tool I found helpful was a relatively unknown one to me called hashcat.

I understand the compulsion, but the above poster is correct. If you are having difficulty (I did too) Then I suggest reviewing everything you know (and dont know) about cracking passwords for that OS...

Question:  If I can change the root password does is that equal to gaining root access and then having full control of the system? 

Instructions don't say that I can't nor say I can.

Give me your opinions.

That's my assumption.  If I can get the key to your front door and then change the locks, your locked out while I pillage your fridge.

Let's wait to see what others say and then I will try it from there.