Jump to content
Wubi

Rooting A Box (Local Command Execution)

By Wubi, in Tutoriale video

Recommended Posts

Wubi Newbie

Wubi

Posted
Posted



Overview

Our target system is Kioptrix 2.

Kioptrix is a "Vulnerable-By-Design OS" which serves as a Pentest lab for security enthusiasts to legally try out their skills with the aim to completely compromise the machine.

The video describes a step-by-step way of going about this.

Steps * Discover network for hosts (Netdiscover) * Scan target network (Nmap)
* Bypass login screen (MySQL Injection) * Set NetCat to listen on attack machine * Inject bash reverse shell.
* Navigate to directory where apache user can write files (cd /tmp) * Search for Local privilege escalation exploit for linux kernel version 2.6
* Download exploit code and host it on attack machine
* Use reverse shell to wget exploit code to Victim's machine
* Compile exploit code and Execute.
* Game Over

Rotimi Akinyele – The Infosec Shinobi

- Rotimi Akinyele (Infosec Shinobi)

Sursa YouTube

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...