当前位置:网站首页>Vulnhub's funfox2
Vulnhub's funfox2
2022-07-07 20:06:00 【Plum_ Flowers_ seven】
Catalog
3、 ... and 、zip Password cracking
2.john Crack the decompression password
One 、nmap Routine scanning
Scan out ftp service , And can be accessed anonymously
also 22 and 80
This range is from 80 Port did not find a breakthrough , The main page is apache The default page for , There is no hidden directory .
Two 、FTP Anonymous access
1.mget
mget *
mget Download all the files .
get Download the two hidden files
2. View hidden files
It probably means that the password is hidden zip In file . And the password of the compressed file is older
3、 ... and 、zip Password cracking
1. Transform first hash
2.john Crack the decompression password
(1)cathtine success
(2)tom success
3. Private key id_rsa Sign in
tom Can successfully login
Four 、sudo Raise the right
Can execute all sudo command , And in mysql_history The password was leaked in .
Direct use of sudo -s Mention right to success
But this is rbash One is limited shell
5、 ... and 、rbash The escape
Conditions 1: There is mysql 3306
Conditions 2:sudo Can execute all commands
1. With root function mysql
adopt mysql Directly execute operating system commands . Achieve a rebound root The powers of the shell.
边栏推荐
- CSDN syntax description
- Compiler optimization (4): inductive variables
- Automatic classification of defective photovoltaic module cells in electroluminescence images-論文閱讀筆記
- 【STL】vector
- Force buckle 2319 Judge whether the matrix is an X matrix
- R language ggplot2 visualization: use the ggecdf function of ggpubr package to visualize the grouping experience cumulative density distribution function curve, and the linetype parameter to specify t
- Cloud 组件发展升级
- PMP對工作有益嗎?怎麼選擇靠譜平臺讓備考更省心省力!!!
- TS快速入门-泛型
- Force buckle 674 Longest continuous increasing sequence
猜你喜欢
Open source heavy ware! Chapter 9 the open source project of ylarn causal learning of Yunji datacanvas company will be released soon!
【哲思与实战】程序设计之道
国家网信办公布《数据出境安全评估办法》:累计向境外提供10万人信息需申报
Force buckle 2319 Judge whether the matrix is an X matrix
Simulate the implementation of string class
Le PGR est - il utile au travail? Comment choisir une plate - forme fiable pour économiser le cœur et la main - d'œuvre lors de la préparation de l'examen!!!
Introduction to bit operation
PMP對工作有益嗎?怎麼選擇靠譜平臺讓備考更省心省力!!!
RESTAPI 版本控制策略【eolink 翻译】
Cloud component development and upgrading
随机推荐
vulnhub之tre1
力扣 459. 重复的子字符串
【哲思与实战】程序设计之道
吞吐量Throughout
PMP每日一练 | 考试不迷路-7.7
pom. XML configuration file label: differences between dependencies and dependencymanagement
一文读懂数仓中的pg_stat
Introduction to bit operation
Navicat连接2002 - Can‘t connect to local MySQL server through socket ‘/var/lib/mysql/mysql.sock‘解决
ASP. Net gymnasium integrated member management system source code, free sharing
JVM GC垃圾回收简述
IP 工具类
el-upload上传组件的动态添加;el-upload动态上传文件;el-upload区分文件是哪个组件上传的。
pom.xml 配置文件标签作用简述
Le PGR est - il utile au travail? Comment choisir une plate - forme fiable pour économiser le cœur et la main - d'œuvre lors de la préparation de l'examen!!!
torch. nn. functional. Pad (input, pad, mode= 'constant', value=none) record
Is PMP beneficial to work? How to choose a reliable platform to make it easier to prepare for the exam!!!
Redis——基本使用(key、String、List、Set 、Zset 、Hash、Geo、Bitmap、Hyperloglog、事务 )
使用高斯Redis实现二级索引
Automatic classification of defective photovoltaic module cells in electroluminescence images-論文閱讀筆記