Synoslabs

Nous contacter

Tag: cve

Archives

Catégories

Articles récents

Tags

boat challenge cody credentials crypto ctf cve easy embed exif exploit geoint geolocation google google lense gralhix hacking hacktoria htb iis intelligence kernel linux location manipulation maps metadata metasploit metaverse mondayquiz osint php redirection reverse search social engineering social media socmint sofia santos street view thursdayquiz web web3 wifi windows writeup

  • 💻 Legacy – Writeup

    adm_synoslabs

    We’ll use a very famous CVE vulnerability to exploit this machine. Add the IP address in /etc/hosts: … 10.10.10.4 legacy.htb … First run a nmap scan: Only 2 ports seem interesting: 139 and 445 which are SMB ports. We can run some enumeration on them: We got some data but nothing really useful. smbclientdoesn’t return…

    Lire plus: 💻 Legacy – Writeup

  • 💻 Lame – Writeup

    adm_synoslabs

    We’ll try to gain root access to the easiest HTB machine. Add the IP address in /etc/hosts: … 10.10.10.3 lame.htb … First run a nmap scan: There are 4 open ports (port 3622 is a false positive): FTP: Anonymous login is allowed, meaning we can connect to it without any password. We can also check…

    Lire plus: 💻 Lame – Writeup

  • 💻 Explore – Writeup

    adm_synoslabs

    During this easy Android machine, we’ll exploit a known CVE. Add the IP address in /etc/hosts: … 10.10.10.247 explore.htb … First run a nmap scan: I cut a part of the output because the rest was garbage. The SSH banner, gives us a good hint to find the Android product: Banana Studio. A quick search…

    Lire plus: 💻 Explore – Writeup

  • 💻 Blue – Writeup

    adm_synoslabs

    To exploit this Windows machine we’ll use an old but efficient vulnerability. Add the IP address in /etc/hosts: … 10.10.10.3 blue.htb … First run a nmap scan: There are only two interestng ports that are open: 139 and 445 which are SMB ports. All the other ones are basic RPC ports. If we try to…

    Lire plus: 💻 Blue – Writeup