Basic pentesting 1

Tanggal

29 September 2019

Validations

4965 Compromissions 31%

Note

163 votes

Description

This is a small boot2root VM I created for my university’s cyber security group. It contains multiple remote vulnerabilities and multiple privilege escalation vectors. I did all of my testing for this VM on VirtualBox, so that’s the recommended platform. I have been informed that it also works with VMware, but I haven’t tested this personally.

This VM is specifically intended for newcomers to penetration testing. If you’re a beginner, you should hopefully find the difficulty of the VM to be just right.

Your goal is to remotely attack the VM and gain root privileges. Once you’ve finished, try to find other vectors you might have missed!

Temps de compromission

2 heures

Système d'exploitation

linux

démarrer cet environnement virtuel

Résultats du CTF alltheday pour Basic pentesting 1

Pseudonyme	Environnement Virtuel	Nombre d'attaquant	Date de début	Environnement compromis en
-	Basic pentesting 1	0	11 Januari 2019 to 15:07	-
-	Basic pentesting 1	0	29 November 2018 to 17:20	-
-	Basic pentesting 1	0	14 November 2018 to 14:59	-

178 Environnements Virtuels

Résultats	Nama	Validations ↓↑	Difficulté	Penulis:	Note
	Metasploitable 2	39% 8830
	Basic pentesting 1	31% 4965
	LAMP security CTF5	25% 3944
	Docker - I am groot	50% 3484		Ech0
	LAMP security CTF4	35% 2768
	SSH Agent Hijacking	25% 2500		mayfly
	SSRF Box	18% 1900		sambecks
	Metasploitable	12% 1766
	Mr. Robot 1	21% 1671
	End Droid	34% 1620
	Imagick	22% 1080		sambecks
	Docker - Sys-Admin’s Docker	38% 1072		Ech0
	SamBox v2	13% 1014		sambecks
	Kioptrix level 2	24% 976
	LAMP security CTF7	39% 899
	VulnVoIP	17% 878
	Docker - Talk through me	42% 751		Ech0
	SamBox v1	7% 746		sambecks
	Windows - Group Policy Preferences Passwords	26% 695
	Django unchained	23% 672		TiWim
	Well-Known	10% 648		sm0k
	LAMP security CTF6	18% 610
	Windows - KerbeRoast	17% 596
	Shared Objects Hijacking	12% 594		das
	Kioptrix level 3	32% 577
	BreakingRootme2020	15% 552		Laluka
	Windows - ASRepRoast	33% 531
	Websocket - 0 protection	7% 518		Worty
	Awky	8% 513		sbrk
	Windows XP pro 01	5% 507		g0uZ
	Rootkit Cold Case	15% 496		franb
	Kioptrix level 4	34% 464
	Bluebox - Microsoft Pentest	4% 431
	pWnOS	31% 405
	Hackademic RTB1	19% 365
	DC-1	14% 349
	SamBox v3	5% 348		sambecks
	Bluebox 2 - Pentest	3% 316		sambecks
	Exploit KB Vulnerable Web App	12% 307
	SAP Pentest	7% 300		iggy
	LAMP security CTF8	14% 293
	Holynix v1	23% 292
	Windows - sAMAccountName spoofing	23% 280
	A bittersweet shellfony	12% 248		mayfly
	/dev/random : Pipe	4% 240
	Hopital Bozobe	8% 239		sambecks
	LordoftheRoot	25% 234
	Acid: Server	11% 220
	FristiLeaks 1.3	28% 217
	SkyTower	24% 217