Vulnix Solution

-



Vulnix is not a vulnerable software version, it is a vulnerable Linux host with configuration weaknesses. You can use this guide to solve the Vulnix challenge.
You can get the Vulnix from here:https://www.vulnhub.com/entry/hacklab-vulnix,48/

Finding victim machine’s (Vulnix VM) IP address.

root@hacktivism:~# netdiscover -r 192.168.1.0/24


**If you are not familiar with netdiscover , just follow this guide: http://hacktivismbycs.blogspot.com/2017/07/scan-live-hosts-on-network.html

A port scan on the victim host.
root@hacktivism:~# nmap -sT -p- -Pn -n -v 192.168.10.96 -T5



Finding users of the victim host.

root@hacktivism:~# smtp-user-enum -M VRFY -U /usr/share/metasploit-framework/data/wordlists/unix_users.txt -t 192.168.10.96

Running finger against the usernames we found.


Since we have NFS service running on port 2049, we may be able to mount a share and find some data.




The mounted share cannot be accessed because the root_squash flag is set.

Brute forcing SSH to find the password for the account named “user”.
After that, we could gain the access of the account user over SSH.



Finding UID of user account called vulnix and create a temporary user on our system.



Generate an SSH key to log into the server as user vulnix without a password.
We have to copy the generated ssh-key into the /home/vulnix/.ssh/authorized_keys file.

Login to the victim's machine as ‘vulnix’.



Vulnix can run a command to open /etc/exports without typing a password.



Then we have to replace the root_squash flag with no_root_squash. Then reboot it manually.




Once the machine has rebooted, mount the partition again.




Once mounted, get a copy of the victim’s machine local shell and change the ownership and SID to the root one.
On my local machine, as ‘root’:


On the victim's machine:



And finally, we can get the root access on the victim machine.

 ~CS






Comments

Post a Comment

If you got something from my writings, just put your thoughts out to words...

Popular posts from this blog

Best Ways to Make Money Online 2019

-
Image
This guide shows the best ways to make money on the internet. These methods are now very popular because you can make money online with less time and effort. However there is no way to earn money quickly but if you can try hard, you'll be able to get extra money. Start your own website or blog and connect with advertising If you need to earn money online, create your own blog or website first. If you're a student or you're away from school one of the best things you can do is start a blog and put your cv on it. Getting a blog is great if you're applying for a job, and it really helps you stand out from the crowd. You can easily start a blog using Google Blogger or Wordpress. Blogger by Google:  https://www.blogger.com/ WordPress:  https://wordpress.com/ By putting pay-per-click ads like Google Adsense, you can earn money with a website. It's going to take a while to start making money. Next, on your blog, you need to have interesting content. You'...
Read more

Amazing Places To Visit In The World

-
Image
The world we live in is full of wonderful things. It would be a beautiful experience to see all those wonderful things. So this article is to show you about such wonderful areas in the world. So you can see it with your family while on vacation. Spain Nobody can get over the excitement of celebrating Christmas in Spain. Whether it's bright lighting, shopping, festive avenues, everything, Spain's all-in-one destination for this December. Spain is one of the warmest countries in Europe. The winters here are milder, but they still have warm clothes and a jacket. Take a walk through Gran Via and enjoy the bright decor. Don't forget the fine wines and tapas from San Anton Market! Talented Spanish artist Gaudi's masterpiece work is much more appreciable. He embellished the city, Barcelona with many beautiful buildings, including the massive Roman Catholic Church, La Sagrada Familia. Costa Rica There are a number of destinations in Costa Rica that you can't c...
Read more

Cross-site Request Forgery Protection in Web Applications via Synchronizer Token

-
Image
What Is CSRF? Cross site request forgery (CSRF), also known as XSRF, Sea Surf or Session Riding, is an attack vector that tricks a web browser into executing an unwanted action in an application to which a user is logged in. A successful CSRF attack can be devastating for both the business and user. It can result in damaged client relationships, unauthorized fund transfers, changed passwords and data theft—including stolen session cookies. CSRFs are typically conducted using malicious social engineering, such as an email or link that tricks the victim into sending a forged request to a server. As the unsuspecting user is authenticated by their application at the time of the attack, it’s impossible to distinguish a legitimate request from a forged one. Implement Synchronizer Tokens Synchronizer tokens are often referred to as “challenge” tokens. These challenge tokens are included within an HTML form and associated with sensitive server-side tasks. When a user wants to...
Read more