HACKTHEBOX * Vulnerable Machine Writeup

Haystack (HACKTHEBOX)

root@kali:~/Downloads# nmap -A 10.10.10.115 Starting Nmap 7.80 ( https://nmap.org ) at 2019-11-10 08:31 GMT Nmap scan report for 10.10.10.115 Host is up (0.25s latency). Not shown: 997 filtered ports PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH 7.4 (protocol 2.0) | ssh-hostkey: | 2048 2a:8d:e2:92:8b:14:b6:3f:e4:2f:3a:47:43:23:8b:2b (RSA) | 256 e7:5a:3a:97:8e:8e:72:87:69:a3:0d:d1:00:bc:1f:09 (ECDSA) |_ 256 01:d2:59:b2:66:0a:97:49:20:5f:1c:84:eb:81:ed:95 (ED25519) 80/tcp…

Vulnerable Machine Writeup * VULNHUB

HA ISRO (VULNHUB)

Link: https://drive.google.com/file/d/1QgmeUi0GmLESYUdojhE_x4TH9lyAiMuF/view root@kali:~# nmap -A 192.168.222.151 Starting Nmap 7.80 ( https://nmap.org ) at 2019-10-23 15:41 GMT Nmap scan report for 192.168.222.151 Host is up (0.00025s latency). Not shown: 998 closed ports PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH 7.6p1 Ubuntu 4ubuntu0.3 (Ubuntu Linux; protocol 2.0) | ssh-hostkey: | 2048 db:d2:c5:ec:a5:f9:c4:f3:8a:70:f6:df:ac:ad:a9:24 (RSA) | 256 34:ae:7a:6f:94:93:25:de:39:e3:14:b0:61:80:34:54…

Powershell * WMI

Exploring Namespace

We can list all namespaces by querying the namespace class. Use below command to list all namespaces within the root namespace. PS C:\Users\victim6\Downloads\new\new\tool\tool\PowerSploit-master\PowerSploit-master> Get-WmiObject -Namespace “root” -Class “__Namespace” | select name PS C:\Users\victim6\Downloads\new\new\tool\tool\PowerSploit-master\PowerSploit-master> Get-CimInstance -Namespace “root” -ClassName “__Namespace” PS C:\Users\victim6\Downloads\new\new\tool\tool\PowerSploit-master\PowerSploit-master> Get-WmiObject -Namespace “root” -Class “__Namespace” PS C:\Users\victim6\Downloads\new\new\tool\tool\PowerSploit-master\PowerSploit-master> Get-WmiObject -Namespace “root” -Class “__Namespace” | select Name…

Powershell * WMI

WMI Introduction

WMI is a windows Management Instrumentation which Microsoft implement for common information model (CIM). Its give us uniform interface for applications and scripts to manage a local or remote computer or network. It contains implement : Managed object format Providers Managed Object Namespaces Repository Consumers MOF Files: We can find the .mof file on this…