Solving SickOs 1.1 (Vulnhub) Walkthrough

Be better than yesterday

Penetration Tester by trade
OSCE|OSCP|CREST

This video shows how to solve the vulnerable machine SickOs: 1.1

SickOs: 1.1 is a recommended vulnerable machine hosted on Vulnhub for Offensive Security OSCP preparation

SickOs: 1.1 vulnerable machine can be downloaded from https://www.vulnhub.com/entry/sickos-...

Gemini Security Awesome Hacking T-Shirts - Support the channel:
https://www.redbubble.com/people/Gemi...

Key Concepts:
Enumerating software versions with NMap and Burp Suite
Utilising HTTP Proxy to further Enumerate
Bash For Loop
Troubleshooting Nikto Scanner
Exploiting Shellshock Vulnerability
Password Reuse Attack
Linux Privilege Escalation

Timestamp
00:00 Intro
00:11 Obtaining Initial Foothold
06:02 Fixing Nikto Error
06:42 Exploiting Shellshock Vulnerability
12:20 Privilege Escalation 1 - Password Reuse
15:15 Privilege Escalation 2 - World-Writable Root Cronjob File