Blunder machine is a vulnerable machine with Linux operating system which is among the retired machines. We are expected to obtain user and root flags by using these vulnerabilities.
We perform a network scan with nmap to identify the target machine
Classic Scan
Full Port Scan
21/tcp closed ftp, 80/tcp open http Apache httpd 2.4.41 (Ubuntu) ports detected. Since the ftp port rejects connections, we continue the optimization on port 80.
On port 80 we continue through the browser to provide enumueration
We performed enumeration on the website, looked at the source code and did not find any information.
We performed directory and file scanning with Gobuster.
/0, /about, /admin, /cgi-bin/, /LICENSE, /robots.txt, /todo.txt directories were detected.
/admin
/LICENSE
/robots.txt,
/todo.txt
In the todo.txt file we get that the CMS has not been updated, it may have given us a hint here. We also received information that there is a fergus user, let’s check the CMS version immediately
We look at the source code in /admin
We saw that Bludit CMS has version 3.9.2.
We tried default passwords here but could not provide successful login.
We searched for vulnerabilities
We have understood that this vulnerability is vulnerable to brute force user-directed execution.
Now let’s perform brute force on this web
I will first prepare a wordlist with Cewl before performing brute force
We have created our wordlist, let’s use the python code available at https://rastating.github.io/bludit-brute-force-mitigation-bypass/ to exploit it
User fergus’s RolandDeschain password has been detected.
Let’s try to log in
We were able to log in
Here we will continue to get Shell using msfconsole.
Here we entered the prompts, then we got Shell, we logged in to the machine on the www-data user, we could not access the user flage because of low authorization.
Here we have lede the password hahsii of user hugo let’s try to crack it with crackstation
User Hugo’s password Password120 has been detected
Let’s try to change the user
We were able to get our user flag
Then let’s try to do privilege escalation
This way we got our root flag
OSCP PREPROTİONS – HTB Blunder
Comments
buy lipitor for sale buy generic lipitor 40mg order atorvastatin generic
I’m not sure where you’re getting your info, but great topic.
I needs to spend some time learning much more or understanding more.
Thanks for excellent info I was looking for this info for my mission.
Hey There. I discovered your weblog using msn. This is
a really smartly written article. I’ll make sure to bookmark it and return to read extra of your helpful
information. Thank you for the post. I will certainly comeback.
I have learn several good stuff here. Definitely price bookmarking for revisiting.
I surprise how a lot attempt you place to create the sort of fantastic informative web site.
Good day! Would you mind if I share your blog with my zynga group?
There’s a lot of folks that I think would really enjoy your
content. Please let me know. Cheers
This is a really good tip particularly to those new to the blogosphere.
Brief but very precise info… Many thanks for sharing this one.
A must read article!
Everyone loves what you guys tend to be up too. Such clever work and
coverage! Keep up the amazing works guys I’ve added you guys to my personal blogroll.
I visited multiple websites except the audio quality for audio songs current at this web page is in fact superb.
What’s up to every single one, it’s genuinely a nice for me to pay a quick visit
this web site, it contains useful Information.
order cipro – buy cipro order augmentin 1000mg pills
ciprofloxacin generic – brand myambutol 1000mg buy augmentin no prescription
buy metronidazole cheap – order cefaclor 500mg generic zithromax 250mg over the counter
ciplox for sale – buy doxycycline generic purchase erythromycin for sale
stromectol 3mg online – cefuroxime buy online order sumycin 500mg
order valtrex generic – buy acyclovir 400mg pills buy acyclovir online
buy metronidazole generic – cefaclor for sale buy azithromycin online cheap
buy ampicillin medication buy generic amoxil order amoxil
furosemide oral – order tacrolimus 1mg without prescription brand captopril 25mg
generic glucophage – baycip order purchase lincocin pills
purchase zidovudine online – buy avapro online cheap order generic zyloprim 300mg
buy clozaril online – purchase aceon generic buy famotidine medication
Najlepsza aplikacja do kontroli rodzicielskiej, aby chronić swoje dzieci – potajemnie tajny monitor GPS, SMS-y, połączenia, WhatsApp, Facebook, lokalizacja. Możesz zdalnie monitorować aktywność telefonu komórkowego po pobraniu i zainstalowaniu apk na telefonie docelowym.
generic quetiapine – capsules geodon 40mg eskalith brand
Skąd mam wiedzieć, z kim mój mąż lub żona rozmawia na WhatsApp, to już szukasz najlepszego rozwiązania. Podsłuchiwanie przez telefon jest znacznie łatwiejsze, niż myślisz. Pierwszą rzeczą do zainstalowania aplikacji szpiegowskiej w telefonie jest uzyskanie telefonu docelowego.
how to get clomipramine without a prescription – aripiprazole 20mg pill sinequan drug
cost atarax – fluoxetine 40mg tablet buy amitriptyline 25mg pill
order augmentin 375mg online – buy baycip no prescription ciprofloxacin order online
amoxil order – duricef 500mg without prescription order ciprofloxacin sale
buy cleocin 300mg online cheap – order vibra-tabs sale chloromycetin online buy
buy generic azithromycin – sumycin where to buy buy ciprofloxacin 500 mg for sale
order stromectol – stromectol tablets for sale buy generic cefaclor
order generic ventolin 4mg – allegra 120mg without prescription theo-24 Cr 400mg canada
Wow, superb blog layout! How long have you ever been running a blog for?
you made blogging look easy. The whole glance of your site is excellent, let alone
the content! You can see similar here sklep internetowy
methylprednisolone pills canada – purchase zyrtec online astelin 10ml cost
cheap desloratadine 5mg – buy zaditor generic ventolin cost
You made a number of fine points there. I did a search on the topic and found a good number of people will have the same opinion with your blog.
glyburide 5mg price – actos tablet dapagliflozin 10mg pill
mexican drugstore online: cheapest mexico drugs – reputable mexican pharmacies online
order glucophage generic – glycomet where to buy cost acarbose 50mg
Please let me know if you’re looking for a author for your blog. You have some really great articles and I believe I would be a good asset. If you ever want to take some of the load off, I’d love to write some content for your blog in exchange for a link back to mine. Please shoot me an e-mail if interested. Thank you!
indianpharmacy com https://indiaph24.store/# Online medicine home delivery
cheapest online pharmacy india
Букмекерская контора 1win – одна из самых популярных площадок, где пользователи могут делать ставки, играть, делать ставки и т. д. Для привлечения новой аудитории данная букмекерская контора предлагает новичкам отличный бонус – возможность получить до 200 000 бонусов за 4 депозита. И для этого покупателям даже не нужно вводить промокоды. Вам просто нужно зарегистрироваться в этом сервисе.
Промокод 1вин 2024: m1WIN2024 — это уникальный код, который необходимо указать при регистрации для получения бонуса 500% до 75 000 рублей. Это предложение доступно только новым игрокам, которые могут претендовать на приветственный бонус 1Win.
Для постоянных клиентов букмекерская контора постоянно выпускает новые промокоды 1win, ведь с этими бонусами клиентам гораздо приятнее пользоваться услугами этой букмекерской конторы. Промокод – это уникальный набор букв и цифр, активация которого позволяет человеку получить бонус. В этом обзоре мы расскажем, где взять новые промокоды 1win и как их активировать для получения бонусов.
Актуальный промокод 1Win 2024 вы можете найти на различных страницах с информацией о бонусах в букмекерских конторах. Продажи также осуществляются через партнеров компании. Лучшее место для поиска купонов – Telegram-канал букмекерской конторы. Новые ваучеры появляются там каждый день. 1Win может отправить промокод индивидуально уже зарегистрированному клиенту. Например, по случаю годовщины регистрации или просто дня рождения клиента.
С промокодом 1WIN новые игроки могут значительно увеличить сумму своего первого и последующих депозитов. Полученные бонусы можно использовать в игре и в случае успеха перевести на свой электронный кошелек. Максимальная сумма бонуса – 75 000 рублей.
Отдельной вкладки для проверки комбинаций нет. Если введено правильно, система активирует бонусное предложение. Во вкладке «Ваучер» в личном кабинете появится сообщение при вводе промокода 1Vin. Отсюда вы сможете увидеть, правильно ли была введена комбинация.
Источник: https://mmocenter.ru/blog/promokod-1win-promokody-1vin-pri-registracii-na-segodnya/
buy nizoral cheap – buy generic ketoconazole 200mg sporanox 100mg cost
order famvir 250mg pill – famciclovir 500mg generic valcivir 500mg drug