Tag: VulnHub

Today we are going to solve another boot2root challenge called “Chili: 1“.  It’s available at VulnHub for penetration testing and you can download it from here. The credit for creating this lab is given to SunCSR Team. Let’s start and learn how to break it down successfully. Level: Easy Penetration Testing Methodology Reconnaissance Netdiscover Nmap […]

Today we are going to solve another boot2root challenge called “Tomato: 1“.  It’s available at VulnHub for penetration testing and you can download it from here. This lab is created by  SunCSR Team. Let’s start and learn how to break it down successfully. Level: Intermediate Penetration Testing Methodology Reconnaissance Netdiscover Nmap Enumeration Dirsearch Exploiting RCE […]

In this article, we are going to solve a Capture the Flag (CTF) challenge of LOLY:1 from Vulnhub and the URL for this CTF is https://vulnhub.com/entry/loly-1,538/. This CTF is posted by SunSCR Team and aimed for Beginners, so let’s get started… Table of Contents Reconnaissance Netdiscover Nmap Enumeration Dirb for Directory Listing and discovering WordPress […]

Today we are going to crack this vulnerable virtual machine called CryptoBank 1. It was created by emaragkos. This challenge is a variation of Capture the Flag. After obtaining root level privileges on the computer, it comprises a single flag. This machine belonged to the intermediate level. I was forced to consider it and work […]

CTF’s are one of the best and probably the fun way to get hands-on pen testing experience. This one, in particular, is a great CTF from Vulnhub which uses aspects of web penetration testing like file upload attacks. We get a chance to capture the requests being made from the web application and exploiting them […]

Today, in this article we are going to gain the root access of an easy level machine called “Photographer 1” which is available at Vulnhub for penetration testing and you can download it from here. The credit for making this lab goes to v1n1v131r4. So, let’s get started and learn how to successfully root this […]

So Simple is a beginner level vulnerable box created by @roelvb79, with some rabbit holes and good methodologies to easily understand how a pentester has to run public exploits work in OSCP-like VMs. Table of Content Reconnaissance Arp-scan to detect system IP Nmap to detect open ports Wpscan to enumerate wordpress installation Bruteforcing a username […]

Broken 2020 is a beginner level virtual machine created by EuSecinfo. There was no running of public exploits, no rabbit holes in the machine, however, there was a need for custom exploitation and a little bit of common sense. Table of Content Reconnaissance Nmap and directory enumeration Locating a malicious script to gain shell access […]

Today we are going to solve another boot2root challenge called “Sunset: Midnight”.  It’s available at VulnHub for penetration testing and you can download it from here. The credit for making this lab goes to whitecr0wz. Let’s get started and learn how to successfully break it down. Level: Intermediate Penetration Testing Methodology Reconnaissance Netdiscover Nmap Enumeration […]

Today we are going to solve another boot2root challenge called “Sunset: Twilight”.  It’s available at VulnHub for penetration testing and you can download it from here. The credit for making this lab goes to whitecr0wz. Let’s get started and learn how to successfully break it down. Level: Intermediate Penetration Testing Methodology Reconnaissance Netdiscover Nmap Enumeration […]