Author Description
The object of the game is to acquire root access via any means possible (except actually hacking the VM server or player). The purpose of these games are to learn the basic tools and techniques in vulnerability assessment and exploitation. There are more ways then one to successfully complete the challenges.
Service Enumeration
Port | Service | Version Detection |
---|---|---|
|
SSH |
OpenSSH 2.9p2 (protocol 1.99) |
|
HTTP |
Apache httpd 1.3.20 ((Unix) |
|
RPC Bind |
N/A |
|
netbios-ssn |
Samba |
|
HTTPS |
Apache httpd 1.3.20 ((Unix) |
Samba Enumeration
Based on the age of the system other services, I know from exeperience that SAMBA is likely vulnerable to the trans2open exploit.
Metasploit Exploit
Root Flag
Root Flag