Skip to content

Pen Tesing Basics

Jump to bottom
TheAalChemist edited this page Aug 14, 2024 · 1 revision

In these set of tasks you'll learn the following:

brute forcing 
hash cracking 
service enumeration
Linux Enumeration

The main goal here is to learn as much as possible. Make sure you are connected to our network using your OpenVPN configuration file.

Credits to Josiah Pierce from Vulnhub.

  • Deploy the machine and connect to our network

  • Find the services exposed by the machine

  • What is the name of the hidden directory on the web server(enter name without /)?

  • User brute-forcing to find the username & password

  • What is the username?

  • What is the password?

  • What service do you use to access the server(answer in abbreviation in all caps)?

  • Enumerate the machine to find any vectors for privilege escalation

  • What is the name of the other user you found(all lower case)?

  • If you have found another user, what can you do with this information?

  • What is the final password you obtain?

Clone this wiki locally