Скачать или смотреть From Basic Enumeration to Root | TryHackMe Lookup

In this video, we have a TryHackMe boot-to-root machine named lookup. In this machine, we go through the typical steps by starting with Nmap scanning and enumeration. We find a login form. We decided to create a python script to find the correct username and then use Hydra to find the password. After successful authentication, we have a file manager hosted on a subdomain and the version of this web application is vulnerable to a php command injection. The exploit can be run through Metasploit to obtain initial foothold as www-data. We move horizontally first by exploiting a misconfigured Linux binary then we use GTFObins to obtain root.
****
Receive Cyber Security Field, Certifications Notes and Special Training Videos
https://buymeacoffee.com/notescatalog...
Writeup
https://motasem-notes.net/from-basic-...
******
Store
https://buymeacoffee.com/notescatalog...
Patreon
  / motasemhamdan  
Instagram
  / mastermindstudynotes  
Google Profile
https://maps.app.goo.gl/eLotQQb7Dm6ai...
LinkedIn
[1]:   / motasem-hamdan-7673289b  
[2]:   / motasem-eldad-ha-bb42481b2  
Instagram
  / mastermindstudynotes  
Twitter
  / manmotasem  
Facebook
  / motasemhamdantty  
****
0:00 - Introduction and Overview
0:12 - Starting with Nmap Scan
0:50 - Scanning Best Practices
1:01 - Enumerating Open Ports
1:13 - Configuring Host File
1:36 - Login Page Enumeration
2:07 - Using Burp Suite for Request Analysis
3:03 - Brute Forcing Usernames and Passwords
4:19 - Python Script for Username Enumeration
6:15 - Running the Username Script
7:05 - Using Hydra for Password Brute Force
8:37 - Accessing the File Manager
9:29 - Exploring Linder File Manager
10:24 - Exploiting Linder Vulnerability
11:42 - Setting Up Exploitation Options
12:19 - Gaining Initial Access
12:35 - Enumerating System Users
13:28 - Escalating Privileges to User Think
13:49 - SUID Binary Analysis