Search for a command to run...
Articles tagged with #offensive-security
Just another BigTree MANTIS Credentials Leak & Pre-Auth Password Reset / Startup root pspy / root2 passwd & shadow Patch Hijack Write-up. CTF Link (VulnLab). Goal: Get the root shell i.e.(root@localhost:~#) and then obtain flag under /root). CTF Lin...
![[Offensive Security] Proving Grounds - Tre](/_next/image?url=https%3A%2F%2Fcdn.hashnode.com%2Fres%2Fhashnode%2Fimage%2Fupload%2Fv1657812930933%2FR8b6A7Qyx.png&w=3840&q=75)
Just another wpscan WebShell RCE / cp SUID Privesc Write-up. CTF Link (VulnLab). Wordy is design for beginners to experience real life Penetration testing. This lab is completely dedicated to Web application testing and there are several vulnerabili...
![[Offensive Security] Proving Grounds - HAWordy](/_next/image?url=https%3A%2F%2Fcdn.hashnode.com%2Fres%2Fhashnode%2Fimage%2Fupload%2Fv1657805077066%2F04ggnSnoc.png&w=3840&q=75)
Just another wpscan Unauthenticated RCE / RSA Key Leak / service SUDO -L'ed / writable sh script SUDO-L'ed Write-up. CTF Link (VulnLab). This is an easy level VM with some rabbitholes. Enumeration is key to find your way in. There are three flags (2...
![[Offensive Security] Proving Grounds - SoSimple](/_next/image?url=https%3A%2F%2Fcdn.hashnode.com%2Fres%2Fhashnode%2Fimage%2Fupload%2Fv1655412769060%2F2Gl0PprcR.png&w=3840&q=75)
Just another HTML Password Leak / Steghide / Ping Obfuscated-RCE'ed / LinPEAS'ed find SUID Write-up. CTF Link (VulnLab). This a beginner level machine , getting a shell is a little bit harder, just think out of the box to get the shell.privilege esc...
![[Offensive Security] Proving Grounds - NoName](/_next/image?url=https%3A%2F%2Fcdn.hashnode.com%2Fres%2Fhashnode%2Fimage%2Fupload%2Fv1651699318197%2FEWGurlNyB.png&w=3840&q=75)
