Windy's little blog

一切生活中的杂七杂八, and I like CTF.

Vulnhub SecureCode:1 Walkthrough (An OSWE-like machine),651/Because there is POC code at the end of the blog, so the walkthrough will be simple.Scan ports, only find 80.Scan port 80, with extension .zip.Download, unzip it, and analyse the source c

Vulnhub XPTO System: 1 Walkthrough,635/Scan ports, 80 and 1337(ssh) are open.Nmap told us there is ".git" folder, then I use GitTools, but get nothing useful.We continue to scan port 80.Check source code of login.php, we notice the

使用kali linux的一些备忘录

以下基于kali linux 2020.41.安装discord在kali linux上安装discord会有依赖错误,其中有一个依赖需要按如下方法安装,kali linux自带仓库找不到。curl -p --insecure "" --out

Vulnhub Nasef Walkthrough,640/scan files at port 80.wget goodmat.txt, get a username and ssh key file.decrypt encrypted ssh key.log in ssh.find writable file.add new root account to /etc/passwd.root@nasef1:~# id;hostna

Vulnhub Gaara Walkthrough,629/Scan port 80, find Cryoserver.┌──(kali㉿mykali)-[~/Documents/gaara] └─$ curl | sed '/^$/d'   % Total    %&n

Vulnhub ICMP: 1 Walkthrough,633/Scan ports, find 22 and 80.┌──(kali㉿mykali)-[~/Documents/icmp] └─$ nmap -sV -sC -p-  -oN ports.log ... PORT   STATE SERVICE VER

Vulnhub System Failure Walkthrough,654/Scan ports.# Nmap 7.91 scan initiated Thu Mar 11 21:49:07 2021 as: nmap -sV -sC -p- -oN ports.log N

HackMyVm Zday Walkthrough ports, a lot opened. Check port 80 first, it's a default apache page. Scan files and folders.Open /fog,  it's login panel of fog project.Google the default crdentials and login. At &quo

Vulnhub The Office: Doomsday Device done!,627/Very interesting machine.Recommand you the writeup by ghost26082012 here:

Vulnhub hacksudo: 1 Walkthough,650/Simple walkthrough.Scan ports.Scan port 80, check each file's source code, but nothing useful.Port 8080 is tomcat, with default creds. Use msfconsole to get reverse shell.Now we are user tomcat.Upload
<< 1 2 > >>

Powered By Z-BlogPHP 1.7.0