Windy's little blog

一切生活中的杂七杂八, and I like CTF.

Vulnhub Alfa: 1 Simple Walkthrough,655/

Simple walkthroug:

  1. nmap -sV -sC -p-  -oN ports.log

  2. ftp log in as anonymous, get a pic file.

  3. check robots.txt, find brain fuck strings, decode it, and get a new url.

  4. enum4linux, get username.

  5. enter the new url, check the chat text, get password pattern.

  6. crunch generate password from the pattern.

  7. hydra to brutefoce ssh username and password.

  8. ssh log in, find local port 5901 is open, and a keyfile in home folder.

  9. port forward 5901 out, vnc connect it with the keyfile.




Powered By Z-BlogPHP 1.7.0