Jump Ahead: Enum – Initial Access – User – Root – Resources TL;DR; To solve this machine, we begin by enumerating exposed services – finding ports 21, 22, 25, 80, 143, 993, and 8080 open. Going to the webserver on port 80, we get a list of email addresses. After sending a phishing email to […]
Jump Ahead: Enum – User – Root – Resources TL;DR; To solve this machine, we begin by scanning for open services – finding ports 8080 and 7680 open. After exploiting an unauthenticated remote code execution vulnerability on the webserver, we have access the the machine as the shaun user – getting user.txt. While enumerating running […]
TJ_Null has once again updated his list of vulnerable machines that should be used as a learning tool to help prepare for the OSCP exam. This time around, he has a spreadsheet that is broken down between HackTheBox and VulnHub machines. Check out the most recent update to his list of machines HERE