Wallaby’s Worst Knightmare 1 – Walkthrough

Walkthrough of Wallaby’s Worst Knightmare 1 vulnhub challenge https://www.vulnhub.com/entry/wallabys-nightmare-v102,176/. Walkthrough A basic ping sweep finds the machine, throwing nmap at it yields 3 ports of interest. 22/tcp open ssh OpenSSH 7.2p2 Ubuntu 4ubuntu2.1 (Ubuntu Linux; protocol 2.0) | ssh-hostkey: | 2048 6e:07:fc:70:20:98:f8:46:e4:8d:2e:ca:39:22:c7:be (RSA) | 256 99:46:05:e7:c2:ba:ce:06:c4:47:c8:4f:9f:58:4c:86 (ECDSA) |_ 256 4c:87:71:4f:af:1b:7c:35:49:ba:58:26:c1:df:b8:4f (ED25519) 80/tcp open http Apache httpd 2.4.18 ((Ubuntu)) |_http-server-header: Apache/2.4.18 (Ubuntu) |_http-title: Wallaby’s Server 6667/tcp filtered irc MAC Address: 00:0C:29:10:4C:60 (VMware) Device type: general purpose Running: Linux 3.X|4.X OS CPE:

Read more

BlackMarket: 1 – walkthrough

Walkthrough for BlackMarket: 1 (https://www.vulnhub.com/entry/blackmarket-1,223/) Summary Flags Credentials Walkthrough A basic nmap sweep finds the machine. root@kali:~# nmap -sP 192.168.195.0/24 Starting Nmap 7.70 ( https://nmap.org ) at 2018-10-26 06:13 AEDT Nmap scan report for 192.168.195.211 Host is up (0.00021s latency). Host is up. Nmap done: 256 IP addresses (5 hosts up) scanned in 2.45 seconds Throwing a nmap scan across the box shows up ftp (vsftpd 3.0.2), ssh (OpenSSH 6.6.1p1), web (Apache httpd 2.4.7), along with pop3 & imap (Dovecot)

Read more

Derpnstink: 1 Walkthrough

Walkthrough for the DerpNStink: 1 (https://www.vulnhub.com/entry/derpnstink-1,221/) CTF challenge image. Summary Flags Domains derpnstink.local Credentials Walkthrough A basic nmap ping scan finds the box. Throwing a fuller scan at it finds three services open and some details. [bash] root@kali:~# nmap -A -T4 192.168.195.214 Starting Nmap 7.60 ( https://nmap.org ) at 2018-03-20 14:44 AEDT Nmap scan report for 192.168.195.214 Host is up (0.00080s latency). Not shown: 997 closed ports PORT STATE SERVICE VERSION 21/tcp open ftp vsftpd 3.0.2 22/tcp open ssh OpenSSH

Read more

Installing Filebeat on Raspberry PI 3

How to setup elastic Filebeat from scratch on a Raspberry Pi. At time of writing elastic.co do not provide ARM builds for any ELK stack component – so some extra work is required to get this up and going. Guide assumes the following: A working recent instance of the ELK stack is already setup & working A working recent up to date installation of a Debian based operating system using systemd on a later model Raspberry PI Filebeat will be

Read more

d0not5top: 1.2 – Walkthrough

Overview CTF Challenge attempted –¬†https://www.vulnhub.com/entry/d0not5top-12%2C191/ Walkthrough is incomplete – I’ll update as I go. Tips found from the setup: Initial import attempt of .ova file failed on VMWare Fusion – needed to retry with relaxed conditions Flags found are: Reconnaissance & Scanning First we find the host (extra output removed) root@kali:~/D0Not5top# nmap -sn 192.168.195.0/24 MAC Address: 00:0C:29:EA:52:D0 (VMware) Nmap scan report for 192.168.195.147 Host is up (0.00071s latency). Host is up. root@kali:~/D0Not5top# A quick nmap scan turns up the following:

Read more

DonkeyDocker 1 – Walkthrough

Overview CTF Challenge attempted – https://www.vulnhub.com/entry/donkeydocker-1,189/ Tip I found from the setup – if VMWare offers to upgrade the DonkeyDocker image, don’t do it. I did on mine & it broke the IP connectivity from Kali. This is my first attempt at a CTF, so was an enjoyable learning exercise. I’ve loosely grouped the steps taken below into Reconnaissance & Scanning, Access & Escalation and Exfiltration. Useful things I learnt along the way: Try simple things first before going with

Read more