Vulnhub virtual machine; OSCP prep box, a windows box with a very well known vulnerability that leads to system level access. Setup of box takes longer then actual exploitation (metasploit used).
Legal Usage: The information provided by executeatwill is to be used for educational purposes only. The website creator and/or editor is in no way responsible for any misuse of the information provided. All the information on this website is meant to help the reader develop penetration testing and vulnerability aptitude to prevent attacks discussed. In no way should you use the information to cause any kind of damage directly or indirectly. Information provided by this website is to be regarded from an “ethical hacker” standpoint. Only preform testing on systems you OWN and/or have expressed written permission. Use information at your own risk.
By continued reading, you acknowledge the aforementioned user risk/responsibilities.
Creating the workspace:
Estimated setup time: ~1hr
Requirements: Windows XP with key - I wish you luck on your adventures finding this information. .NET Framework Version 4 (or higher) - [Link] VulnInjector
booting: scream.iso
Installing .NET Framework:
Discovering VM on network
1 |
|
Target: 10.10.10.201
Enumeration
Nmap scan:
1 |
|
output:
1 |
|
This is an older box lets see what the front door has to offer - SSH
1 |
|
download locally with -m
inspect code:
Metasploit
1 |
|
Exploit leads to direct NT/SYSTEM
Bring me the root!
-exec