Table of Contents TL;DR Recon Attack Joomla SQLMAP Remote Shell Exploit and root flag The flag Final thoughts TL;DR Download and Informations Link to Vulnhub DC Challenges Original Description DC-3 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration testing. As with the previous DC releases, this one is designed with beginners in mind, although this time around, there is only one flag, one entry point and no clues at all. Linux skills and familiarity with the Linux command line are a must, as is some experience with basic penetration testing tools.

Read more

Table of Contents TL;DR Recon Create /etc/hosts entry Find open ports Wordpress wpscan Enumerate Users Generate wordlist Find matching passwords SSH Escape rbash Run external command in vi Root Shell with git Flags Flag 1 Flag 2 Flag 3 Flag 4 Final Flag Final thoughts TL;DR Download and Informations Link to Vulnhub DC Challenges Original Description Much like DC-1, DC-2 is another purposely built vulnerable lab for the purpose of gaining experience in the world of penetration testing. As with the original DC-1, it’s designed with beginners in mind.

Read more

Table of Contents Recon Drupal Opening netcat shell Grab the flags through netcat shell and browser Flag1 Flag2 Flag3 Flag4 Final Flag Download and Informations Link to Vulnhub DC Challenges Original Description DC-1 is a purposely built vulnerable lab for the purpose of gaining experience in the world of penetration testing. It was designed to be a challenge for beginners, but just how easy it is will depend on your skills and knowledge, and your ability to learn. To successfully complete this challenge, you will require Linux skills, familiarity with the Linux command line and experience with basic penetration testing tools, such as the tools that can be found on Kali Linux, or Parrot Security OS.

Read more