HackTheBox: Lame
Hello Friends, Welcome to the first ever writeup on easy box released on 15th March, 2017 on Hack The Box named LAME.
So lets start with Network Mapper command. (As stated below)
So rectify the output of this command
So as we can see we got 4 ports open in this machine as listed below.
As you can see port no. 21 and 22 would need login user id and password so we wont bother there, and enumerate port no. 139 and 445.
Were exactly port no. 139 does not mention us the version number we would go with port 445.
Lets search version of services running on on port no. 445 that is Samba smbd 3.0.20-Debian .
Going through we get to know about metasploitable tool, and how to use it for this vulnerability.
LINK: https://www.rapid7.com/db/modules/exploit/multi/samba/usermap_script/
Using this we would try to gain reverse-shell.
Note that RHOSTS is HTB's machine IP address, and LHOST is your machine IP address after using vpn which you can find using following command.
We have got into the machine, now try to find user.txt and root.txt by own.
Thanks for coming by. Would be happy to hear any updates from you.
Comments
Post a Comment