Introduction Compromised is a hard linux machine which has been “compromised” by a previous attacker so you have to follow all the attacker’s traces in order to become root. First, you will have to find some credentials which will be used to upload a web shell. Secondly, you will have...
HTB OSCP Path
Introduction OpenBSD is an easy-medium Hack The Box machine where the attacker will require of an OpenBsd web exploit and a little bit of analyzing code in order to get the user flag and another OpenBSD exploit about Xlock and (S/Key or YubiKey) in order to become root. Enumeration As...
HTB OSCP Path
SolidState - 10.10.10.51 tags: HTB Medium Linux Enumeración Nmap $ nmap -A -Pn -p- 10.10.10.51 Starting Nmap 7.80 ( https://nmap.org ) at 2020-11-09 01:21 CET Nmap scan report for 10.10.10.51 Host is up (0.034s latency). Not shown: 65529 closed ports PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH 7.4p1 Debian...
CVE Telnet POP3 Rbash Cron OSCP Path
Sense - 10.10.10.60 tags: HTB Easy FreeBSD Enumeración Nmap $ nmap -A -Pn -p- 10.10.10.60 Starting Nmap 7.80 ( https://nmap.org ) at 2020-11-08 23:58 CET Nmap scan report for 10.10.10.60 Host is up (0.033s latency). Not shown: 65533 filtered ports PORT STATE SERVICE VERSION 80/tcp open http lighttpd 1.4.35 |_http-server-header:...
Enumeracion RCE OSCP Path
Cronos - 10.10.10.13 tags: HTB Medium Linux Enumeración Nmap $ nmap -A -Pn -p- 10.10.10.13 Starting Nmap 7.80 ( https://nmap.org ) at 2020-11-05 19:25 CET Nmap scan report for 10.10.10.13 Host is up (0.034s latency). Not shown: 65532 filtered ports PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH 7.2p2 Ubuntu...
Command injection Cron PHP OSCP Path
Introduction SecarmyOSCP is one challenge of the many CTF challenges that there were in the SecarmyVillage 2020. In this challenge you will have to get 10 flags correspoding each one to a different challenge covering different topics from web to pwn. Enumeration First of all, it is needed to scan...
FTP pwn OSCP Path
Blue is a beginner-friendly Windows machine from tryhackme , where we exploit the famous eternalblue MS17-010 and dump NTLM hashes with mimikatz. Enumeration Running nmap : nmap -sC -sV -o nmap.txt 10.10.86.230 PORT STATE SERVICE VERSION 135/tcp open msrpc Microsoft Windows RPC 139/tcp open netbios-ssn Microsoft Windows netbios-ssn 445/tcp open...
Eternalblue Mimikatz OSCP Path