Windy's little blog

一切生活中的杂七杂八, and I like CTF.

HackMyVm Driftingblues9 Walkthrough

HackMyVm Driftingblues9 WalkthroughMachine can be download here: scan ports first,  port 80 is open.Open port 80 in browser,  it's a tiny blog.Check source code, we see the

Vulnhub HarryPotter: Nagini Walkthrough (SSRF with Gopher),689/Very interesting machine, first time for me to do SSRF with Gopher.Nmap scan ports first.nmap -sV -sC -p-  -oN ports.logScan port 80, find note.txt

HackMyVm Family Walkthrough scan ports.Scan folder/files at port 80, only a wordpress folder.Check source code of wordpress/index.html, need to add family to /etc/hosts.Use wpscan to scan wordpress, but found no vulnerable

Vulnhub Bluesmoke: devrandom2 Walkthrough,678/Nmap scan ports.nmap -sV -sC -p- -oN ports.log port 80, it's a backup system.We can only upload .zip or .tar files. And tar has wildcrad vuln

HackMyVm Momentum Walkthrough's a little tricky machine, thanks author for the hints.Nmap scan ports first.nmap -sV -sC -p- -oN ports.log port 80, nothing special right now

HackMyVm Choc Walkthrough scan ports, only 21 and 22 are open.nmap -sV -sC -p- -oN ports.log ftp as anonymous, get id_rsa.Try ssh, get user name "carl".Try to logi

Vulnhub Wayne Manor: 1 Walkthrough,681/Read GUIDELINES.txt in unziped files.GUIDELINES:     Add '<ip>' to the '/etc/hosts' file.     

Vulnhub Wireless: 1 Walkthrough,669/Nmap scan ports.nmap -sV -p- -oN ports.log port 80, only index.html.Visit port 8000, look like a cms site. Take care the upper-left, there is a username "ji

HackMyVm Diophante Walkthrough ports, noticed port 25 maybe open, it's smtp service.nmap -sV -sC -p- -oN ports.log scan port 80.Check note.txt, it's a hint about knock

HackMyVm Clover Walkthrough ports.nmap -sV -sC -p-  -oN ports.logLog in ftp anonymous, found 5 text files, but no useful.Scan port 80.gobuster dir -u http://19
<< 1 2 3 4 5 6 7 8 > >>

Powered By Z-BlogPHP 1.7.0