Vulnhub靶机系列:ch4inrulz: 1.0.1

最新推荐文章于 2024-04-26 23:33:44 发布

原创

最新推荐文章于 2024-04-26 23:33:44 发布 · 703 阅读

1 ·

CC 4.0 BY-SA版权

文章标签：

#安全 #linux #python #php

本文详细介绍了如何攻克Vulnhub上的ch4inrulz 1.0.1靶机，包括信息收集、端口扫描、HTTP服务漏洞利用、FTP服务探索、PHP伪协议利用、文件包含漏洞攻击、密码破解以及提权等步骤。通过这个过程，提升渗透测试技能。

这次的靶机是vulnhub靶机：ch4inrulz: 1.0.1，还是在合天网安里做。

文章目录

Frank has a small website and he is a smart developer with a normal security background , he always love to follow patterns , your goal is to discover any critical vulnerabilities and gain access to the system , then you need to gain root access in order to capture the root flag.
This machine was made for Jordan’s Top hacker 2018 CTF , we tried to make it simulate a real world attacks in order to improve your penetration testing skills.
The machine was tested on vmware (player / workstation) and works without any problems , so we recommend to use VMware to run it , Also works fine using virtualbox.
Difficulty: Intermediate , you need to think out of the box and collect all the puzzle pieces in order to get the job done.
The machine is already got DHCP enabled , so you will not have any pro