Kioptrix Level 1 (Through Samba)
Last time, I got the “ROOT” through Apache vulnerability using an exploit called “OpenFuck”.
Since I used to carry lunch box at the workplace, therefore, I get ample of time during the lunch-break for leisure. Thought to try out with other services such as “Samba”.
I will not write the steps again on how to get the target IP address, with a presumption that you already went through my first article. If you didn’t, please click here.
I did a google search for keyword
and I got..
I thought of checking the version of Samba running on Kioptrix, through
nmap -sV -O -A -T4 172.16.178.179
nikto -h 172.16.178.179
I didn’t get what I expected. Therefore, I did download that exploit (from the exploit-db) and thought to give it a go. (Remember, I have used half of my recess).
Download the exploit.
I am not sure whether you did SSH with your Kali from your Host Machine. Since I am using Mac and it is quite convenient to use Kali Linux through ssh from my machine. (I have mentioned about this step in my previous post.)
Now, I have to copy the exploit (which is in Mac) to Kali Machine.
scp /Download/10.c email@example.com:/root/Desktop/exploits
Note: I have created a directory on Desktop, called exploits.
chmod 755 10.c
gcc -o Fuck 10.c
Note: If it compiles successful, it won’t show any error.
./Fuck -bBcCdfprsStv 172.16.178.179
My alarm rings at perfect timing! It is 2PM and has to resume back to work! Later guys!