OffSec Live | Slort

Поделиться
HTML-код
  • Опубликовано: 23 дек 2024
  • Welcome to our OffSec Live clip of Slort, a PG Practice machine: portal.offsec....
    Here's an overview of this session -
    Enumeration and Scanning: Panther used Nmap for port scanning and identified several open ports, including FTP, RPC, NetBIOS, SMB, HTTP, and MySQL. He explained using specific scripts and tools like nmap automator and Hydra for further enumeration.
    Exploitation Attempts: He attempted to exploit FTP, MySQL, and SMB services with various methods, including trying default credentials and running scripts to discover vulnerabilities like LFI (Local File Inclusion).
    Privilege Escalation and Final Steps: Panther discussed privilege escalation techniques, including exploiting LFI and RFI vulnerabilities. He provided tips on using tools like PowerShell and scripts to monitor scheduled tasks and retrieve proof of successful exploitation.
    Join OffSec Live on Fridays: / offsecofficial
    We do demonstrations and walkthroughs of course topics and Proving Grounds machines. Additionally, sessions offer career guidance, including how to build a resume, how to break into #cybersecurity, and interview tips.

Комментарии •