OSCP Learning Notes - Enumeration

Posted keepmoving1113

tags:

篇首语:本文由小常识网(cha138.com)小编为大家整理,主要介绍了OSCP Learning Notes - Enumeration相关的知识,希望对你有一定的参考价值。

Installing Kioptrix: Level 1

Download the vm machine form https://www.vulnhub.com/entry/kioptrix-level-1-1,22/.

In the Kali Linux:

Find the devices in the intranet using the following command:

netdiscover -i eth0

技术图片

 Scan the target kioptrix vm through nmap

nmap -Pn -sS --stats-every 3m --max-retries 1 --max-scan-delay 20 --defeat-rst-ratelimit -T4 -p1-65535 -oN /root/kioptrix1.txt 10.0.0.20

技术图片

nmap -nvv -Pn -sSV -p 22,80,111,139,443,1024 --version-intensity 9 -A -oN /root/kioptrix1_detailed.txt 10.0.0.20

技术图片

nmap -Pn --top-ports 1000 -sU --stats-every 3m --max-retries 1 -T3 -oN /root/kioptrix1_U.txt 10.0.0.20

技术图片

 

SSH Enumeration

 1. Search vulnarabilites through Internet.

   Key words: openssh 2.9p2 exploit

   技术图片

    技术图片

2.Search exploitable information through Kali

searchsploit openssh

技术图片

3. Try to exploit the target host - such as brute force attack

技术图片

 

以上是关于OSCP Learning Notes - Enumeration的主要内容,如果未能解决你的问题,请参考以下文章

OSCP Learning Notes - Buffer Overflows

OSCP Learning Notes - Exploit

OSCP Learning Notes - Enumeration

OSCP Learning Notes - Capstone

OSCP Learning Notes - Exploit

OSCP Learning Notes - Exploit