~# latest posts

Altoro Mutual – Get SHELL!

Altoro Mutual ~$ Known as “Hack me” site made by IBM. This site got all possible vulnerabilities as: “XXS, SQL Injection, RFI/LFI” and more. I’m going to skip “XSS” and “SQL” Injection in this Walkthrough, and proceed to “RFI/LFI” to get Shell.   ~$ Web Shell If we scan Altoro Mutual website with Burp Spider, we will detect that there …

Liors CTF2-2 Walkthrough

Walkthrough № 1: Ports found: 21/tcp open ftp FileZilla ftpd 0.9.41 beta 80/tcp open http Apache httpd 2.4.23 ((Win32) OpenSSL/1.0.2h PHP/5.6.24) 135/tcp open msrpc Microsoft Windows RPC 139/tcp open netbios-ssn Microsoft Windows netbios-ssn 443/tcp open ssl/http Apache httpd 2.4.23 ((Win32) OpenSSL/1.0.2h PHP/5.6.24) 445/tcp open microsoft-ds Microsoft Windows 7 - 10 microsoft-ds (workgroup: CSI) 3306/tcp open mysql MariaDB (unauthorized) 3389/tcp open …

Show More News

~# whoami

~# Popular

Load more