靶机入侵2

Rxw
  2024-08-19 14:44:48 2024-08-19 14:44:48 作成   2024-11-11 19:23:51 2024-11-11 19:23:51 更新      313 字  1 分  

ssh登录后,找到home/下可以找到其他flag

(root㉿mykali)-[/home/rxwkail/Desktop]
└─# ssh -p 22222 Summer@192.168.100.129 
Summer@192.168.100.129's password: 
Permission denied, please try again.
Summer@192.168.100.129's password: 
Last failed login: Mon Aug 19 14:23:50 AEST 2024 from 192.168.100.128 on ssh:notty
There was 1 failed login attempt since the last successful login.
Last login: Wed Aug  7 03:28:04 2024 from 192.168.100.128
[Summer@localhost ~]$ whoami
Summer
[Summer@localhost ~]$ id
uid=1002(Summer) gid=1002(Summer)=1002(Summer) 环境=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
[Summer@localhost ~]$ pwd
/home/Summer
[Summer@localhost ~]$ ls
FLAG.txt
[Summer@localhost ~]$ more FLAG.txt
FLAG{Get off the high road Summer!} - 10 Points
[Summer@localhost ~]$ cd /home
[Summer@localhost home]$ ls
Morty  RickSanchez  Summer
[Summer@localhost home]$ cd Morty/
[Summer@localhost Morty]$ ls
journal.txt.zip  Safe_Password.jpg
[Summer@localhost Morty]$ python -m SimpleHTTPServer
Serving HTTP on 0.0.0.0 port 8000 ...

8000

python -m SimpleHTTPServer

http://192.168.100.133:8000/

开启了简单的http服务。

开启成功,之后我们直接访问靶机IP地址,下载对应文件即可

这是图片:

Safe_Password

打开010发现:

pwd

密码:Meeseek

解压zip得到:

Monday: So today Rick told me huge secret. He had finished his flask and was on to commercial grade paint solvent. He spluttered something about a safe, and a password. Or maybe it was a safe password... Was a password that was safe? Or a password to a safe? Or a safe password to a safe?

Anyway. Here it is:

FLAG: {131333} - 20 Points

未完待续……

  • タイトル: 靶机入侵2
  • 作者: Rxw
  • で作成されました : 2024-08-19 14:44:48
  • で更新されました : 2024-11-11 19:23:51
  • リンク: https://rxw2023-github-io.pages.dev/2024/08/19/靶机入侵2/
  • 著作権宣言: この文章は CC BY-NC-SA 4.0 を使用して許可します。
コメント
目次
靶机入侵2