Hack the Teuchter VM (CTF Challenge)

July 17, 2018

Hello friends!! Today we are going to solve latest CTF challenge “Teuchter” presented by vulnhub for penetration practice and design by knightmare. This virtual machine is having intermediate to medium difficulty level. One need to break into VM using web application and from there escalate privileges to gain root access. Download it from here: https://www.vulnhub.com/entry/teuchter-03,163/ Penetrating Methodologies Network Scanning (netdiscover, Nmap) Abusing HTTP service for PHP extract backdoor Compromise victim’s…

Read More >>

Hack the Box Challenge: Enterprises Walkthrough

July 17, 2018

Hello friends!! Today we are going to solve another CTF challenge “Enterprise” which is available online for those who want to increase their skill in penetration testing and black box testing. Enterprise is retired vulnerable lab presented by Hack the Box for making online penetration practices according to your experience level; they have the collection of vulnerable labs as challenges from beginners to Expert level. Level: Expert Task: find user.txt and root.txt file on victim’s machine. Since…

Read More >>

Hack the Billu Box2 VM (Boot to Root)

July 15, 2018

Hello freinds!! Today we are going to solve latest CTF challenge “Billu Box2” presented by vulnhub for penetration practice and design by Manish Kishan Tanwar. This virtual machine is having intermediate to medium difficulty level. One need to break into VM using web application and from there escalate privileges to gain root access. You can download it from this Link: https://www.vulnhub.com/entry/billu-b0x-2,238/ Penetration Methodologies Network scaning Exploit Drupal (Metasploit) privilege escalation…

Read More >>

Hack the Lin.Security VM (Boot to Root)

July 15, 2018

Hello Guy’s!! In our previous article “Linux Privilege Escalation using Sudo Rights” we had described how some weak misconfiguration sudo rights can lead to root privilege escalation and today I am going to solve the CTF “Lin.Security – Vulnhub” which is design on weak sudo right permissions for beginners to test their skillset through this VM. This is one of the simplest labs to learn pen testing and also avoid…

Read More >>

Hack The Toppo:1 VM (CTF Challenge)

July 14, 2018

Hello friends!! Today we are going to solve latest CTF challenge presented by vulnhub for penetration practice and design by Mr. Hadi Mene. This lab is proposal for beginners and mode of difficulty level is easy. You can download it from this Link: https://www.vulnhub.com/entry/toppo-1,245/ Penetration Methodologies Network scaning Directory brute-force attack Abusing HTTP web directories Compromise confidential Spawn tty shell (ssh login) SUID privilege escalation Get root access and capture…

Read More >>

File System Access on Webserver using Sqlmap

July 14, 2018

Hello everyone and welcome to the par two of our sqlmap series. In this article we’ll be exploiting an error based SQL injection to upload a shell on the web server and gain control over it! Now, how to do this, tools required, everything is discussed in as much detail as possible. So, let’s dive right in. Since, attacking a live website is a crime, we’ll be setting up a…

Read More >>

Hack the Basic Pentesting:2 VM (CTF Challenge)

July 14, 2018

Basic pentesting 2 is a boot2root VM and is a continuation of the Basic Pentesting series by Josiah Pierce. This series is designed to help newcomers to penetration testing develop pentesting skills and have fun exploring part of the offensive side of security. VirtualBox is the recommended platform for this challenge (though it should also work with VMware — however, I haven’t tested that). This VM is a moderate step…

Read More >>

Hack the Box Challenge: Falafel Walkthrough

July 14, 2018

Hello friends!! Today we are going to solve another CTF challenge “falafel” which is available online for those who want to increase their skill in penetration testing and black box testing. Falafel is a retired vulnerable lab presented by hack the box for making online penetration practices according to your experience level; they have the collection of vulnerable labs as challenges from beginners to expert level. Level: Hard Task: find…

Read More >>

Hack the Box Challenge: Charon Walkthrough

July 13, 2018

Hello friends!! Today we are going to solve another CTF challenge “Charon” which is available online for those who want to increase their skill in penetration testing and black box testing. Charon is retired vulnerable lab presented by Hack the Box for making online penetration practices according to your experience level; they have the collection of vulnerable labs as challenges from beginners to Expert level. Level: Expert Task: find user.txt and root.txt file on victim’s machine. Since these…

Read More >>

Hack the PinkyPalace VM (CTF Challenge)

July 9, 2018

Hello friends! Today we are going to take another boot2root challenge known as PinkyPalace. The credit for making this vm machine goes to “Pink_panther” and it is another boot to root challenge in which our goal is to gain root access to complete the challenge. You can download this VM here. Let’s Breach!!! Let’s do an nmap scan for port enumeration. nmap -sV -p- 192.168.1.137 Nmap scan shows us the following…

Read More >>