GPEN Capture the Flag
I'm having some trouble with the CTF exercise for the SANS SEC560 course and I'm hoping someone that has gone through the course can point me in the right direction. I took the class on-demand last month and passed the GPEN. I just went back over the books and decided to do the CTF. I don't want to post too much information and ruin anything for anyone that hasn't taken the class yet so I'm going to be vague. I obtained the first username which was in a pretty obvious location. I'm now trying to obtain the password for that account so I can move on to the rest of the exercise. I cannot seem to get this password. I have worked on this for hours and have had a password guessing tool attempt well over 60,000 passwords. Can anyone point me in the right direction. Please don't give me the password. I'm only looking for a slight bump in the right direction so I can complete this on my own. I already emailed Ed Skoudis but I'm sure he is a busy guy so I don't know when he'll have a chance to get back to me. I plan on posting this on the GIAC advisory board also.