登录查看更多内容

Hacking the Sunset Dusk Vulnerable VM

Irfan Shakeel

I am on a mission to create a secure cyber world ???| Director @ CIP Cyber | Creating ICS/OT Security Content ????

发布日期: 2020年3月22日

Sunset: dusk is a vulnerable by design Debian based machine created by whitecrOwz. It is available on https://www.vulnhub.com

This machine is ranked as a beginner VM, so it is very much useful for those pentesting learners who have just started to get hands on practice.

We will take an advantage of the vulnerabilities present in this machine i.e. weak credentials which let us inject the PHP file for exploiting Remote Code Execution.

After importing Sunset: dusk on VirtualBox, start the VM:

Network Scanning

As we don’t know the IP address of this VM we will get back to our attacking machine i.e. Kali Linux and use netdiscover command to identify the target machine’s IP.

We got the IP of the target machine now, we will perform information gathering by scanning the target IP to identify all the loopholes and open ports of the victim.

Use Nmap tool to scan the target: # nmap 192.168.0.114 -A

Read the complete article here.

要查看或添加评论，请登录

Irfan Shakeel的更多文章

Why IT Security Strategies Don't Translate to OT

2023年7月14日

Why IT Security Strategies Don't Translate to OT

In the era of interconnectedness, cybersecurity has never been more critical. Businesses across the globe are…
ZIP, PDF & RAR Password Cracking

2021年7月25日

ZIP, PDF & RAR Password Cracking

Having confidential documents on a system, like a pdf of financial data or a zip including personal images and videos…
Fetch and Crack NTLM Hash to Get Windows Admin Access

2021年5月9日

Fetch and Crack NTLM Hash to Get Windows Admin Access

Originally published on ehacking blog: Passwords are always our first and, in cases, sole line of protection from…

1 条评论
Exploit Android ADB using Ghost Framework in Kali Linux

2020年9月7日

Exploit Android ADB using Ghost Framework in Kali Linux

Reference: https://www.ehacking.

1 条评论
How to Hack Android Phone over WAN or Internet

2020年5月1日

How to Hack Android Phone over WAN or Internet

This tutorial is the answer to the most common questions (e.g.

1 条评论
Dirsearch Tutorial to find the Hidden Web Directories

2020年3月28日

Dirsearch Tutorial to find the Hidden Web Directories

When a security analyst performing website penetration testing the initial step should be finding hidden directories of…
How to use Autopsy for Computer Forensice

2020年3月18日

How to use Autopsy for Computer Forensice

Autopsy is one of the digital forensics tools use to investigate what happened on a computer. It offers a GUI access to…
Hacking MYSQL Database using Metasploit in Kali Linux

2020年3月9日

Hacking MYSQL Database using Metasploit in Kali Linux

Cyber reconnaissance is the most significant phase to stimulate an attack. Without any prior knowledge of a victim and…

2 条评论
Steps to Install Kali Linux in a Virtual Machine

2020年2月16日

Steps to Install Kali Linux in a Virtual Machine

We are going to install Kali Linux in a virtual box and will use it as a regular application in Windows system. Kali…
How to Become Anonymous Online?

2020年1月29日

How to Become Anonymous Online?

In many applications including surfing the internet, chatting, sending confidential documents anonymity has become a…

2 条评论

See all articles

Hacking the Sunset Dusk Vulnerable VM

Irfan Shakeel

I am on a mission to create a secure cyber world ???| Director @ CIP Cyber | Creating ICS/OT Security Content ????

Network Scanning

Irfan Shakeel的更多文章

社区洞察

其他会员也浏览了

Google Releases Urgent Chrome Update to Patch New Zero-Day Vulnerability

Google Releases Android Update to Patch Actively Exploited Vulnerability

Kali Linux 2024.1 Released: New Tools, Updated Look, and More

Windows Stack Buffer Overflow in a real life app — Exploit development — CloudMe_1.11.2 Buffer Overflow-CVE-2018–6892

Embedded Linux Weekend Hacking, Part 4: Platform Device Drivers

Code found online exploits LogoFAIL to install Bootkitty Linux backdoor

Exploiting Wildcard for Privilege Escalation

Hack the Lin.Security VM (Boot to Root)

Backdoor in your Apple

Network Scanning

Irfan Shakeel的更多文章

Why IT Security Strategies Don't Translate to OT

ZIP, PDF & RAR Password Cracking

Fetch and Crack NTLM Hash to Get Windows Admin Access

Exploit Android ADB using Ghost Framework in Kali Linux

How to Hack Android Phone over WAN or Internet

Dirsearch Tutorial to find the Hidden Web Directories

How to use Autopsy for Computer Forensice

Hacking MYSQL Database using Metasploit in Kali Linux

Steps to Install Kali Linux in a Virtual Machine

How to Become Anonymous Online?

社区洞察

其他会员也浏览了

Google Releases Urgent Chrome Update to Patch New Zero-Day Vulnerability

Google Releases Android Update to Patch Actively Exploited Vulnerability

Kali Linux 2024.1 Released: New Tools, Updated Look, and More

Windows Stack Buffer Overflow in a real life app — Exploit development — CloudMe_1.11.2 Buffer Overflow-CVE-2018–6892

Embedded Linux Weekend Hacking, Part 4: Platform Device Drivers

Code found online exploits LogoFAIL to install Bootkitty Linux backdoor

Exploiting Wildcard for Privilege Escalation

Hack the Lin.Security VM (Boot to Root)

Backdoor in your Apple