Recon Nmap Directory listing The web app Exploit Auth Bypass PDF Injection The following is the request that was done to puchase an Axe A quick google search lead me here : https://www.triskelelabs.com/blog/extracting-your-aws-access-keys-through-a-pdf-file Maybe we can get info from the Database Let’s see if I can find any interesting files […]
Nmap reveals ssh on port 22 and a website on port 80. I found a nice exploit on GitHub that will provide a reverse shell. Let’s start a listener. Time for escalation. Enumeration didn’t take long 😉 This should be fairly easy! Done!!! Rooted!
Nmap reveals FTP, SSH and HTTP. I couldn’t log successfully on FTP so went to the website. The pcap had nothing really interesting. Going back to the website and looking at the URL http://10.10.10.245/data/1 I wondered what was at /data/0. It seems like an older report. I downloaded it. After […]
Nmap reveals telnet port which seems to be a remote management endpoint for JetDirect printer. Let’s try it! I’m gonna need to find the password for this… After a while I found this blog post showing how to exploit by “Getting a JetDirect password remotely using the SNMP vulnerability“. I’ll […]
The vulnerability I will exploit is known as Eternal Blue MS17-010. Let’s fire up metasploit!
In this Writeup, I will go through doubletrouble: 1 made by tasiyanci available for free on VulnHub. First step is to find the machine’s IP address. The address is 192.168.56.103 and we see two ports that are open. 80 should be a website and SSH on port 22. Now, let’s […]
Video Version Here Bandit6 Bandit7 Bandit8 Bandit9 Bandit10
OverTheWire offers different levels of training into Linux and InfoSec. In this series, I will go through the Bandit path which is a good way to practice Linux basics. You can also watch this writeup as a video https://www.youtube.com/watch?v=wasOgybCZos Bandit 0 The first step into the Bandit path is to […]
In this Writeup, I will go through Dina 1.0 made by Touhid Shaikh available for free on VulnHub. Let’s try cracking it! I use zip2john to convert the file into a hash. Then I use john to crack it. Looks like we found touhid’s password list! sudo -l reveals something […]
In this tutorial I will show you the way I install Kali VM on Virtual Box. First step is to download Kali iso here. Next, we open up Virtual Box and create a new machine. Now start the Kali VM by double clicking on it. Next and final step is […]