TryHackMe-Skynet

00:00-into
00:56-Start of Nmap Scan to Discover Open Ports
03:25-Enumerating the Web-Server running on port 80
04:35-Using Gobuster to brute force directories
05:41-Installing FFUF and using FFUF Bruteforce directories
08:46-SMB Enumeration port 139 and 445 using smbmap and smbclient
14:18-looking at Squirrelmail directory and trying default credentials
18:47-Using Hydra to BruteForce the Login page and getting password
24:14-Logging into Squirrelmail with the cracked credentials.
25:03-Enumerating SMB again with milesdyson password
28:45-Looking at the directory we found from MilesDyson Share
30:20-Using FFUF again to find files in that strange directories
32:00-Found another CMS called CUPA CMS
33:35-Looking at SearchSploit for exploit of CUPPA CMS
35:00-Exploiting LFI and RFI to gain initial Foothold
44:55-Start of Privilege Escalation
45:05-Upgrading simple shell to fully interactive tty
50:00-Found Backups directory and exploiting crontab and tar
57:48-Adding a rule in the sudoers file so user www-data can run all commands as root and getting root access.
01:01:14-Answering questions of TryHackMe and completing the box

Видео TryHackMe-Skynet канала Programmer Security LTD