VULNHUB

HA_CHANAKYA-(VULNHUB)

Report Link: http://download.vulnhub.com/ha/chanakya.zip root@kali:~/Downloads# nmap -A 192.168.135.132 Starting Nmap 7.80 ( https://nmap.org ) at 2019-11-30 17:12 GMT Nmap scan report for 192.168.135.132 Host is up (0.00039s latency). Not shown: 997 closed ports PORT STATE SERVICE VERSION 21/tcp open ftp pyftpdlib 1.0.0 or later | ftp-syst: | STAT: | FTP server status: | Connected to: 192.168.135.132:21 […]

VULNHUB

Djinn_1-(VULNHUB)

Report Link: https://download.vulnhub.com/djinn/djinn.ova root@kali:~/Downloads# nmap -A 192.168.135.133 Starting Nmap 7.80 ( https://nmap.org ) at 2019-12-01 08:46 GMT Nmap scan report for 192.168.135.133 Host is up (0.00043s latency). Not shown: 998 closed ports PORT STATE SERVICE VERSION 21/tcp open ftp vsftpd 3.0.3 | ftp-anon: Anonymous FTP login allowed (FTP code 230) | -rw-r–r– 1 0 0 […]

WMI

WMI for Blue

Detecting Persistence : To detect persistence, common filter, consumer and binding can be manually analyzed or a “detection” permanent event consumer can be created. PS C:\Windows\system32> Get-WmiObject __eventfilter -Namespace root\subscription PS C:\Windows\system32> Get-WmiObject activescripteventconsumer -Namespace root\subscription PS C:\Windows\system32> Get-WmiObject commandlineeventconsumer -Namespace root\subscription PS C:\Windows\system32> Get-WmiObject activescripteventconsumer -Namespace root\subscription Using WMI permanent Event cosnumers to alert […]

VULNHUB

HA_DHANUSH – (VULNHUB)

VM Link: http://download.vulnhub.com/ha/dhanush.zip root@kali:~/Downloads# nmap -A 192.168.135.131 Starting Nmap 7.80 ( https://nmap.org ) at 2019-11-30 16:12 GMT Nmap scan report for 192.168.135.131 Host is up (0.00032s latency). Not shown: 999 closed ports PORT STATE SERVICE VERSION 80/tcp open http Apache httpd 2.4.29 ((Ubuntu)) |_http-server-header: Apache/2.4.29 (Ubuntu) |_http-title: HA: Dhanush MAC Address: 00:0C:29:22:66:8B (VMware) Device type: […]