Sws101_bounty_hacker
Topic: Bounty Hacker
Target Ip Address
1
10.10.156.153
Find open ports on the machine
Therer are 3 open ports
1
2
3
- 21 ftp vsftpd 3.0.3
- 22 ssh OpenSSH 7.2p2
- 80 http Apache httpd 2.4.18
Anonymous login from ftp server.
I downloaded the task.txt and locks.txt so to see what is inside locks.txt we’ll cat the file.
Now doing cat in the task.txt
We found who wrote the task.txt lin
user flag
using this as the username i tried to bruteforce the password using hydra and rockyou.txt
I found the pasword as RedDr4gonSynd1cat3 and logged into ssh successfully.
We got access to to user as lin
Reading the user.txt file we got the user flag.
1
THM{CR1M3_SyNd1C4T3}
root flag
To find the root flag i have used this command that we found using sudo -l
I found the root flag by changing directories and reading in the files
1
THM{80UN7Y_h4cK3r}
This post is licensed under CC BY 4.0 by the author.