Hack the Bulldog:2 (CTF Challenge)

Hack the Bulldog:2 (CTF Challenge)

Aarti S. Aarti S.

Aarti S.

Lead Pentester | OSCP|CISM| ISO27001-2013-Lead Auditor

发布日期: 2018年8月5日
+ 关注

Hello friends!! Today we are going to solve another CTF challenge “Bulldog 2”. This VM is developed by Nick Frichette, which is a standard Boot-to-Root challenge. Our goal is to get into the root directory and see the congratulatory message.

Level: Intermediate

Task: To Find The Final Flag.

Steps involved:

  1. Post scanning to discover open ports
  2. Discovery of top monthly users
  3. Discovery of authorization of admin in a Javascript file
  4. Bruteforcing each user with fasttrack.txt
  5. Modification of response code of correct credential to make it master_admin_user
  6. Discovery of new admin dashboard
  7. Exlpoiting CLI in password tab in Login page
  8. Getting netcat shell
  9. Spawning a teletype
  10. Escalating privileges using writable /etc/passwd file

Full Article Read Here

要查看或添加评论,请登录

Aarti S.的更多文章

  • HIRING
    2024年4月16日

    HIRING

    Location - India (Remote) Job Type - Full Time Experience - Entry Level (1-3 Years) Job Summary: We are seeking a…

  • Data Exfiltration using PowerShell Empire
    2019年5月27日

    Data Exfiltration using PowerShell Empire

    In our previous post, we had already discussed “Command and Control with DropboxC2” But we are going to demonstrate…

  • Development: Vulnhub Walkthrough
    2019年5月17日

    Development: Vulnhub Walkthrough

    Today we are going to take on another challenge known as “DEVELOPMENT”. This is designed for OSCP practice, and the…

  • Hack the Box : Irked Walkthrough
    2019年4月28日

    Hack the Box : Irked Walkthrough

    Today we are going to solve another CTF challenge “irked”. It is a retired vulnerable lab presented by Hack the Box for…

  • Hack the Box: Teacher Walkthrough
    2019年4月24日

    Hack the Box: Teacher Walkthrough

    oday we are going to solve another CTF challenge “Teacher”. It is a retired vulnerable lab presented by Hack the Box…

  • Covert Channel: The Hidden Network
    2019年4月21日

    Covert Channel: The Hidden Network

    Generally, the hacker uses a hidden network to escape themselves from firewall and IDS such. In this post, you will…

  • SP eric: Vulnhub Lab Walkthrough
    2019年4月17日

    SP eric: Vulnhub Lab Walkthrough

    Hello friends! Today we are going to take another CTF challenge known as “SP eric”. The credit for making this VM…

  • Command & Control: WebDav C2
    2019年4月14日

    Command & Control: WebDav C2

    In this article, we will learn how to use WebDav C2 tool. Table of Content: Introduction Installation Exploiting Target…

  • Comprehensive Guide on Netcat
    2019年4月2日

    Comprehensive Guide on Netcat

    his article will provide you with the basic guide of Netcat and how to get a session from it using different methods…

    4 条评论
  • Empire GUI: Graphical Interface to the Empire Post-Exploitation Framework
    2019年3月27日

    Empire GUI: Graphical Interface to the Empire Post-Exploitation Framework

    This is our 8th post in the series of the empire which covers how to use empire as GUI. Empire has a great GUI…

社区洞察

其他会员也浏览了