Privilege Escalation

Target this time is / etc / shadow in the server, first of all do information gathering, I use nmap, after receiving
information, then we match it with the tools vunlnerability scanner, I use nessus






turned out to open the same port, 22,80,137,139, 445, 10000,
after the scan, a strange looking port :) here we are trying to enter the port 10000 (webmin)  



before entering the metasploit, we check first in exploitDB, with the keyword webmin

type the command


./webmin searchsploit

It turns out there was no exploit, but before we execute, we first copy the home folder first,
 
platforms/multiple/remote/2017.pl cp / root
 
why we choose the arbitrary file, because the ability to read the file permissions are beyond our. After the exploit file copied to the home folder and then we execute the command :

perl 2017.pl
 
contents all options granted last execution.





After getting the password, we copy all the contents of / etc / shadow earlier to a new txt file, with any name, here I save with the name password.txt
crack do with john the ripper to perform the command. Existing picture of this post? for cracking passwords will be continued in my next post,

good luck:)


 

Comments

Post a Comment

Popular posts from this blog

EXE file structure

Image
I 'll try to explain how a structure file extension .EXE. EXE is a common file extension indicates an executable file ( program) in the DOS , OpenVMS , Microsoft Windows , Symbian , and others. In addition to the executable program , many EXE files contain other components called resources, such as bitmaps and icons which the executable program to be able
Read more

Filesystem Structure

Image
For this time I will explain about a system file structure there are some that I will explain , among others, are : FAT16 FAT32 NTFS EXT2 EXT3 starting from the first , which is FAT16   FAT16 we start from the first FAT . What is FAT ? FAT File System that is used in Windows Operating System . FAT 's name comes from the use of tables that focus on areas where information is empty or may not be used . To limit the size of the table , the disk space allocated to files in hardware sector groups are adjacent , so-called developing cluster. When disk drive , the maximum number of clusters also
Read more

Introduction Maltego

Image
What is maltego ? Maltego are tools for OSINT (Open Source Intelligence Gathering ) , so OSINT is a method of searching the information available to the public and then analyzed and used for certain purposes maltego also an open- source intelligence and forensics application . This allows for the mining and gathering information and presenting this information in a meaningful way .
Read more