VulnHub—DC-8

最新推荐文章于 2024-03-14 02:19:26 发布
最新推荐文章于 2024-03-14 02:19:26 发布
阅读量403 收藏 1
点赞数
分类专栏: OSCP 文章标签: linux drupal sql
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/weixin_39219503/article/details/104140188
版权
01 环境搭建靶机环境下载:https://www.vulnhub.com/entry/dc-8,367/题目信息如下DC-8 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration testing.This challeng...
摘要由CSDN通过智能技术生成

01 环境搭建

  • 靶机环境下载:https://www.vulnhub.com/entry/dc-8,367/
  • 题目信息如下
DC-8 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration testing.

This challenge is a bit of a hybrid between being an actual challenge, and being a "proof of concept" as to whether two-factor authentication installed and configured on Linux can prevent the Linux server from being exploited.

The "proof of concept" portion of this challenge eventuated as a result of a question being asked about two-factor authentication and Linux on Twitter, and also due to a suggestion by @theart42.

The ultimate goal of this challenge is to bypass two-factor authentication, get root and to read the one and only flag.

You probably wouldn't even know that two-factor authentication was installed and configured unless you attempt to login via SSH, but it's definitely there and doing it's job.

Linux skills and familiarity with the Linux command line are a must, as is some experience with basic penetration testing tools.

For beginners, Google can be of great assistance, but you can always tweet me at @DCAU7 for assistance to get you going again. But take note: I won't give you the answer, instead, I'll give you an idea about how to move forward.

02 信息收集

将靶机环境恢复到virtualbox之后,开始第一步信息收集工作。

发现靶机

查看攻击机的ip为192.168.56.1(环境恢复时采用Host-Only Adapter)

最低0.47元/天 解锁文章
弥敦道人
关注
  • 0
    点赞
  • 1
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
VulnHub DC-1
weixin_45682839的博客
04-13 327
VnlnHub DC-1靶场攻关攻略记录,五个flag,获得root权限。
Vulnhub DC-8
Pai_Space
04-05 1009
明确:《中华人民共和国网络安全法》 Description DC-8 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration testing. This challenge is a bit of a hybrid between being an actual challenge, and being a "proof of conce..
vulnhub DC-8靶机实战
m0_51195235的博客
12-01 516
vulnhub DC-8靶机实战
vulnhub dc-8
m0_62207170的博客
05-30 724
vulnhub dc-8
Vulnhub - DC-1
qq_46081990的博客
03-14 373
Nmap扫描目标主机,发现开放22、80、111、40884端口,分别运行OpenSSH 6.0p1、Apache httpd 2.2.22、rpcbind 2-4服务。MSF搜索Drupal,使用payload:exploit/unix/webapp/drupal_drupalgeddon2,成功拿到Web权限www-data。查询GTFOBins得知find的SUID提权方式如下,启用一个新的root权限的bash。上传综合辅助探测脚本LinEnum.sh至目标主机/tmp目录下,给予执行权限执行
Vulnhub DC-5
Pai_Space
02-20 268
Description DC-5 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration testing. The plan was for DC-5 to kick it up a notch, so this might not be great for beginners, but should be ok for people with.
VulnHub DC-8
Lee_yc的博客
09-24 299
先在kali上修改这个文件的格式,再临时开启kali的http服务,使靶机可以在kali上将文件下载下来。将脚本下载到靶机上之后发现运行不了,原因是这个脚本的格式是dos,要修改为unix格式才行。将两列的账号密码保存到一个文件,格式如下,使用john进行爆破。在靶机上将文件下载下来,下载到/tmp目录下,当前目录下载会失败。执行脚本,发现执行失败,查看发现没有执行权限,为文件赋予执行权。查看系统的版本信息,用户信息、内核信息,发现并没有可以利用的。利用exim4,查询exim4的版本,版本是4.89。
vulnhub DC-4靶机实战
m0_51195235的博客
10-04 2254
vulnhub DC-4靶机实战
Vulnhub DC-6
Pai_Space
03-11 771
Description DC-6 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration testing. This isn't an overly difficult challenge so should be great for beginners. The ultimate goal of this challenge is to g.
vulnhub靶机-DC系列-DC-1
qq_45953122的博客
08-08 175
DC-1详解
Vulnhub靶机渗透测试 DC-8靶机
12-07
Vulnhub靶机渗透测试 DC-8靶机
VulnHub渗透测试靶场- DC-8
11-21
DC-8 是另一个专门建造的易受攻击的实验室,旨在获得渗透测试领域的经验。 这个挑战有点像实际挑战和“概念验证”,即在 Linux 上安装和配置的双因素身份验证是否可以防止 Linux 服务器被利用。 此挑战的“概念...
vulnhub靶场实战系列-DC-2实战
05-18
vulnhub靶场实战系列-DC-2实战
VulnHub 渗透测试靶场 -DC-9
11-21
DC-9 是另一个专门建造的易受攻击的实验室,旨在获得渗透测试领域的经验。 这一挑战的最终目标是扎根并读取唯一的标志。 Linux 技能和熟悉 Linux 命令行是必须的,还有一些基本渗透测试工具的经验。 对于初学者来...
vulnhub靶场实战系列-DC-3实战
最新发布
05-20
vulnhub靶场实战系列-DC-3实战
VulnHubDC-3
weixin_39219503的博客
01-30 1284
01 环境搭建 靶机环境下载:https://www.vulnhub.com/entry/dc-3,312/ 题目信息如下 Description DC-3 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration testing. A...
VulnHub—Os-hackNos-3
weixin_39219503的博客
01-07 813
01 环境搭建 靶机环境下载:https://www.vulnhub.com/entry/hacknos-os-hacknos-3,410/ 题目信息如下,难度中等,需要获取俩个flag Difficulty: Intermediate Flag: 2 Flag first user And the second root Learning: Web Application | Enume...
VulnHub—Os-Bytesec
weixin_39219503的博客
01-05 763
01 环境搭建 靶机环境下载:https://www.vulnhub.com/entry/hacknos-os-bytesec,393/ 题目信息如下,难度中等,需要获取俩个flag Difficulty : Intermediate Flag : 2 Flag first user And second root Learning : exploit | SMB | Enumration...
VulnHubDC-5
weixin_39219503的博客
02-01 643
01 环境搭建 靶机环境下载:https://www.vulnhub.com/entry/dc-5,314/ 题目信息如下,只有一个flag Description DC-5 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration te...
VulnHub入门教程:DC-1靶场攻破指南
"DC-1 是一个专门为渗透测试学习设计的漏洞靶场,由 ins1ght 作者提供,适合初级者。靶机于2019年2月28日发布,包含五个旗标,最终目标是找到并读取 root 用户主目录中的旗标,可能需要具备 Linux 技能、熟悉 Linux ...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值