0x00 技术点
Nmap端口扫描、目录发现、漏洞探测
Wpscan用户枚举、密码爆破
Meterpreter shell
权限提升
0x01 环境搭建
靶机链接: https://www.vulnhub.com/entry/evm-1,391/
靶机信息:
Name: EVM: 1
Date release: 2 Nov 2019
靶机描述:
This is super friendly box intended for Beginner's This may work better with VirtualBox than VMware
下载ova镜像文件,vbox导入,设置两张虚拟网卡,分别为NAT模式和仅主机模式(改为默认网卡配置)
0x02 信息收集
主机发现
netdiscover -i eth0 #选择仅主机模式网口
IP At MAC Address Count Len MAC Vendor / Hostname
-----------------------------------------------------------------------------
192.168.56.1 0a:00:27:00:00:15 1 60 Unknown vendor
192.168.56.100 08:00:27:30:bc:cb 1 60 PCS Systemtechnik GmbH
Kali机器的IP为 192.168.56.101 ,以上探测到的 192.168.56.100就是EVM了
端口扫描
nmap -sV -p- 192.168.56.101
Host is up (0.00023s latency).
All 65535 scanned ports on 192.168.56.100 are filtered