CTF

[Meachines] [Easy] Sightless SQLPad-RCE+shadow哈希破译…

信息收集IP AddressOpening Ports10.10.11.32TCP:21,22,80$ nmap -p- 10.10.11.32 --min-rate 1000 -…

[Meachines] [Hard] Kotarak SSRF 端口扫描+AD域ntds.dit数据…

信息收集IP AddressOpening Ports10.10.10.55TCP:22,8009,8080,60000$ nmap -p- 10.10.10.55 --min-r…

Tally SharePoint+Keepass+Firefox 44.0-RCE+MSSQL-RC…

信息收集IP AddressOpening Ports10.10.10.59TCP:21, 80, 81, 135, 139, 445, 808, 1433, 5985, 1556…

[Meachines] [Insane] Sizzle AD域+DC控制器+.scf窃取NTLM+A…

信息收集IP AddressOpening Ports10.10.10.103TCP:21, 53, 80, 135, 139, 443, 445, 464, 593, 636, …

[Offsec Lab] ICMP Monitorr-RCE+hping3权限提升

信息收集IP AddressOpening Ports192.168.52.218TCP:22,80$ nmap -p- 192.168.52.218 --min-rate 100…

[Meachines] [Easy] Sea WonderCMS-XSS-RCE+System Mo…

信息收集IP AddressOpening Ports10.10.11.28TCP:22,80$ nmap -p- 10.10.11.28 --min-rate 1000 -sC …

Blackfield AD域+SMB+AS-REP+bloodhound+SRPC密码重置+内存取证…

信息收集IP AddressOpening Ports10.10.10.192TCP:53, 88, 135/tcp, 389/tcp, 445/tcp, 593/tcp, 326…

jarvis OJ web题目浅析

0x00 前言:近期刷到的不错的ctf平台,权当看个乐。0x01 RE? :这道题考的有些许的偏门,首先下载附件,名为udf.so.(一大堆字符)。Udf为mysql 的一个扩展接…

[Meachines] [Medium] Sniper RFI包含远程SMB+ powershell…

信息收集IP AddressOpening Ports10.10.10.151TCP:80,135,139,445,49667$ nmap -p- 10.10.10.151 --m…

[Meachines] [Medium] Querier XLSM宏+MSSQL NTLM哈希窃取(…

信息收集IP AddressOpening Ports10.10.10.125TCP:135, 139, 445, 1433, 5985, 47001, 49664, 49665,…