LAME HTB

VERIFYING CONNECTION WITH THE BOX BY PINGING TO SEE IF WE HAVE A CONNECTION
WE SEE THAT A COUPLE OF PROTOCOLS ARE OPEN FTP,SMB,SSH
WE USED SMBCLIENT TO VIEW THE FILESHARES ON PORT 139. WHENVER 139/445 IS OPEN WE GOING TO SMBCLIENT
ATTEMPT TO GET INTO EACH FILESHARE AND DIDN’T MAKE ANY HEADWAY UNTIL WE TRIED TMP SHARE
DOESN’T LOOK LIKE ANYTHING USEFUL IS HERE SO ITS A DEAD END
FROM HERE WE GOOLGE THE VERSION THE PROTOL IS RUNNING AND SEE IF THERE IS AN EXPLOIT FOR IT
WE FOUND A MATCH FOR THE VERSION FROM THE NMAP SCAN
COPY THIS MODULE AND PUT IT IN METASPLOIT
WE CAN CONFIRM THE EXPLOIT WORKED WE HAVE A SHELL
Once in this shell here are a few commands you can run to navigate:

Pwd tells you were u are in the shell

Ls/dir list the file in that directory/folder

Updatedb + locate will find the file for you

This box was similar to the legacy box. Basically we just did a smb enumeration and found a different exploit to get the shell.

--

--

--

eJPT | Sec+ | Cyber Security Enthusiast. I plan on obtaining the ecpptv2 and OSCP in 2021. Just documenting my experience of becoming a pentester along the way.

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

TerraNews 2021-11-4/5

Why its actually smart to be a fanboy

Posting your date of birth online invites hackers

Introducing Metta: Uber’s Open Source Tool for Adversarial Simulation

{UPDATE} Orbs of Eternity Hack Free Resources Generator

University of Florida Researcher Creates Innovative Training Platform That Makes Cyberspace a…

Nothing is safe on the Internet

Internet security

How to Greatly and Promptly Reduce the Threat of Hack Attacks Worldwide

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Allen

Allen

eJPT | Sec+ | Cyber Security Enthusiast. I plan on obtaining the ecpptv2 and OSCP in 2021. Just documenting my experience of becoming a pentester along the way.

More from Medium

MusesNFT Revised Tokeneconomics!

How will the public sale of $CROD take place?

Ghosts and Phantoms

Illusive For the First Time