Writeup DC9 (VulnHub)

Description DC-9 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration testing. The ultimate goal of this challenge is to get root and to read the one and only flag. As always start by running nmap against the target: …and dirb to

Writeup Me and My Girlfriend: 1 (VulnHub)

Description: This VM tells us that there are a couple of lovers namely Alice and Bob, where the couple was originally very romantic, but since Alice worked at a private company, “Ceban Corp”, something has changed from Alice’s attitude towards Bob like something is “hidden”, And Bob asks for your

Writeup secnotes.htb

Add secnotes.htb to /etc/hosts and let nmap enumerate the ports and enter the website to dig around. Just by looking at the website you can find some email/possible username inside the notification: Use dirsearch or dirb to find hidden files and directories: Experimenting with the app using burpsuite & common

Writeup access.htb

Let’s start gathering some bacis information about the web part of the machine: Next step. Connect to open ftp port and try anonymous login: Bingo. List and download all the useful stuff: backup.mdb looks interesting: Open the zip file. Access the telnet port probing for correct password with obtained strings: