Description
‘hackme2’ is a medium difficulty level box. This is the second part of the hackme series where more controls are in place do deter malicious attacks. In addition, you will have to think out of the box to exploit the vulnerabilites. The goal is to gain limited privilege access via web vulnerabilities and subsequently, privilege escalate as a root user. The lab was created to mimic real world web vulnerabilities.
‘hackme2’ uses DHCP and in the possible event that the mysqld shuts down on its own (very rare cases), attempt to force restart the machine and it should be working fine subsequently.
Walkthrough
扫描探测
探测目标ip
arp-scan -I eth0 -l
探测目标开放的服务
nmap -p- -sV 10.0.1.102
发现目标有一个站点
因为这个靶机和hackme1差不多,因此需要先注册一个账号,登陆进去。这里我注册了一个hack123/hack123
最低0.47元/天 解锁文章
扫一扫
3805
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
