Description
DC-5 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration testing.
The plan was for DC-5 to kick it up a notch, so this might not be great for beginners, but should be ok for people with intermediate or better experience. Time will tell (as will feedback).
As far as I am aware, there is only one exploitable entry point to get in (there is no SSH either). This particular entry point may be quite hard to identify, but it is there. You need to look for something a little out of the ordinary (something that changes with a refresh of a page). This will hopefully provide some kind of idea as to what the vulnerability might involve.
And just for the record, there is no phpmailer exploit involved. :-)
The ultimate goal of this challenge is to get root and to read the one and only flag.
Linux skills and familiarity with the Linux command line are a must, as is some experience with basic penetration testing tools.
For beginners, Google can be of great assistance, but you can always tweet me at @DCAU7 for assistance to get you going again. But take note: I won't give you
本文详细介绍了在VulnHub平台上的DC-5靶场环境中进行渗透测试的过程。首先,通过环境搭建和信息收集,发现了靶机IP并进行端口扫描,揭示了80和111端口开放。接着,通过Web页面的LFI漏洞,找到了nginx日志文件,并利用这个漏洞获取了shell。最后,通过挖掘并利用一个程序的本地提权漏洞,成功获得了root权限并拿到flag。
最低0.47元/天 解锁文章
扫一扫
4960
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
