Took a stab at box 2 of the billu series on Vulnhub. I’m not sure if this is was the intended method for root, but here it is either way. I’m going to revisit it to see if there are others as well… NMAP returns: Nmap scan report for 192.168.52.187 Host is up (0.00022s latency). […]
File this under “Hmph…I did not know that” and “…really?” I read this post over at the BHIS blog the other day, and had no idea about the whole port 70,000 thing. So I had to see for myself… You learn something new every day…
One of the things that pentesters will do during an engagement is generate a list of potential usernames to use in various attacks on the target organization. There have been several utilities developed over the years which attempt to gather this info from LinkedIn, but I have not had great success with them for one […]
Background Back in late February, I took a bit of a break after passing my OSCE exam. Of course, it wasn’t too long afterwards that I got that itch of “I need a new challenge.” A few people that had recently taken the OSCE were discussing RastaLabs, and how awesome it was, so I followed […]
Round 2 of my battle with the OSCE lab proved successful. I don’t have a whole lot to add other than the many other well written reviews that currently exist. What I will say is that if you are considering going down the OSCE rabbit hole, you will, without a doubt, need to do a […]
My last post was Novemberish…which coincides with the time that I signed up for the OSCE course from Offensive Security. Many hours were spent xor’ing, jumping, popping, pushing, moving, add-ing, and sub-ing. All of which culminated this weekend in my lab exam. Let’s just say that, I’ll be revisiting it again…but am proud of what […]
This time up…H.A.S.T.E from Vulnhub, courtesy of Security Shards. Let’s check it out… Our nmap scan shows… root@kali:~/vulnhub/haste# cat haste.nmap # Nmap 7.60 scan initiated Sat Nov 11 21:42:38 2017 as: nmap -sS -sV -oA haste 172.16.115.140 Nmap scan report for 172.16.115.140 Host is up (0.00052s latency). Not shown: 999 closed ports PORT STATE SERVICE […]
I spent some time with Moria (v1.1) this past week…super fun machine and a good exercise in thinking outside the box. And without further ado…here’s Moria. Nmap shows… root@kali:~/vulnhub/moria# cat moria.nmap # Nmap 7.60 scan initiated Mon Nov 6 18:34:11 2017 as: nmap -sS -sV -oA moria 172.16.115.135 Nmap scan report for 172.16.115.135 Host is up […]
Quick write-up of LazySysAdmin, found here: https://www.vulnhub.com/entry/lazysysadmin-1,205/ This is labeled as “beginner-intermediate” but probably leaning more on the beginner side. Anyhow…let’s do this! Basic nmap scan… root@kali:~/vulnhub/lazysysadmin# nmap -sS -sV 172.16.115.134 -oA lazy Starting Nmap 7.60 ( https://nmap.org ) at 2017-11-06 00:08 EST Nmap scan report for 172.16.115.134 Host is up (0.00047s latency). Not shown: 994 […]
Below you’ll find my results from the Vulnhub Quaoar machine, found here. There are a few ways to root this…here’s what I did initially. First – NMAP Discovery (yes, I cheated and got the IP from my DHCP server…) nmap -sS -sV 192.168.10.152 -p- Starting Nmap 7.60 ( https://nmap.org ) at 2017-10-28 23:37 EDT Nmap […]
Gerren Murphy 2018 | All Rights Reserved. Powered by WordPress