Proving Grounds – ZeroVantage

Bratarina

Bratarina Video Tutorial Please wait for video to load… Written Walkthrough FOOTHOLD Starting out with an Nmap script we get the following ports open. PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH 7.6p1 Ubuntu 4ubuntu0.3 (Ubuntu Linux; protocol 2.0) | ssh-hostkey: | 2048 db:dd:2c:ea:2f:85:c5:89:bc:fc:e9:a3:38:f0:d7:50 (RSA) | 256 e3:b7:65:c2:a7:8e:45:29:bb:62:ec:30:1a:eb:ed:6d (ECDSA) |_ 256 d5:5b:79:5b:ce:48:d8:57:46:db:59:4f:cd:45:5d:ef (ED25519) 25/tcp open […]

Snookums

Snookums Video Tutorial Please wait for video to load… Written Walkthrough FOOTHOLD Starting off with an Nmap scan we get the following ports open. PORT STATE SERVICE REASON VERSION21/tcp open ftp syn-ack ttl 61 vsftpd 3.0.222/tcp open ssh syn-ack ttl 61 OpenSSH 7.4 (protocol 2.0)80/tcp open http syn-ack ttl 61 Apache httpd 2.4.6 ((CentOS) PHP/5.4.16)111/tcp […]

ClamAV

ClamAV Video Tutorial Please wait for video to load… Written Walkthrough FOOTHOLD Starting off with an Nmap scan we get PORT STATE SERVICE REASON VERSION22/tcp open ssh syn-ack ttl 61 OpenSSH 3.8.1p1 Debian 8.sarge.6 (protocol 2.0)25/tcp open smtp syn-ack ttl 61 Sendmail 8.13.4/8.13.4/Debian-3sarge380/tcp open http syn-ack ttl 61 Apache httpd 1.3.33 ((Debian GNU/Linux))139/tcp open netbios-ssn […]

Pelican

Pelican Video Tutorial Please wait for video to load… Written Walkthrough FOOTHOLD Starting off with an nmap scan we get 9 ports open: PORT STATE SERVICE REASON VERSION22/tcp open ssh syn-ack ttl 61 OpenSSH 7.9p1 Debian 10+deb10u2 (protocol 2.0)139/tcp open netbios-ssn syn-ack ttl 61 Samba smbd 3.X – 4.X (workgroup: WORKGROUP)445/tcp open netbios-ssn syn-ack ttl […]

Payday

Payday Video Tutorial Please wait for video to load… Written Walkthrough FOOTHOLD Starting with an Namp scan we get the following ports open: PORT STATE SERVICE REASON VERSION22/tcp open ssh syn-ack ttl 61 OpenSSH 4.6p1 Debian 5build1 (protocol 2.0)80/tcp open http syn-ack ttl 61 Apache httpd 2.2.4 ((Ubuntu) PHP/5.2.3-1ubuntu6)110/tcp open pop3 syn-ack ttl 61 Dovecot […]

MoneyBox

Moneybox Video Tutorial Please wait for video to load… Written Walkthrough FOOTHOLD Starting off with an nmap scan we get the following ports open PORT STATE SERVICE REASON VERSION21/tcp open ftp syn-ack ttl 61 vsftpd 3.0.3| ftp-anon: Anonymous FTP login allowed (FTP code 230)|_-rw-r–r– 1 0 0 1093656 Feb 26 2021 trytofind.jpg| ftp-syst: | STAT: […]

Election1

Election1 Video Tutorial Please wait for video to load… Written Walkthrough FOOTHOLD For this writeup I’m going to explain how I exploited this box and then what I believe to be the intended route. I got kind of lucky and looks like a skipped a big portion of the box. Having said that, I watched […]

Gaara

Gaara Video Tutorial Please wait for video to load… Written Walkthrough FOOTHOLD Firstly running a few directory brute forces I came across the following URL http://192.168.243.142/Cryoserver Hidden at the bottom of this web page were some other directories. These can be seen below: http://192.168.243.142/Temari http://192.168.243.142/Kazekage http://192.168.243.142/iamGaara These directories had large paragraphs of information. The […]