So I checked this lab and everything works. Kudos to the lab creator, that was super fun!!
When sniffing look for smb2 to get the username, and the share server and share name. Then look for irc to get the chat server IP, and the chat channel and key.
Once you have this information, connect to the chat server (as detailed in the instructions) and say “I fogot my password to sharename” replacing sharename with the name of the share you discovered sniffing and filtering on smb2. Then connect to the SMB share using the username and reset password you got from chat.
So use wireshark to gather the info you need, xchat to get the password reset, and smbclient to get the flag.
It’s an involved challenge, I had to read it a few times.
Thanks as always, i had the user name and share server and share name but idk why i thought i was going to find the chat server IP, and the chat channel and key in smb2 i was searching smb2 all day i feel so slow
Hey, you got it, that’s what counts!!!