Linux

Introduction Linux-Enum is an automated enumeration tool I built to speed up the initial reconnaissance phase when targeting Linux machines. It detects open services and runs the appropriate enumeration tools, organizing all output for easy review. Language: Python 3 Target: Linux systems Purpose: OSCP preparation, penetration testing GitHub: github.com/jashidsany/linux-enum Why I Built This During OSCP preparation, I found myself running the same enumeration sequence on every Linux box: Nmap scan Gobuster if web is open enum4linux if SMB is open showmount if NFS is open snmpwalk if SNMP is open This tool automates all of that and intelligently runs tools based on what ports are open. ...

Introduction Bashed is a Linux machine on HackTheBox that demonstrates the dangers of leaving development tools exposed on production servers. We’ll discover an exposed web shell, then escalate privileges through sudo misconfigurations and a root cron job. Difficulty: Easy OS: Linux Skills: Web enumeration, sudo abuse, cron job exploitation Reconnaissance Nmap Scan nmap -sC -sV -oN nmap/bashed 10.129.2.11 Results: Port Service Version 80 HTTP Apache 2.4.18 (Ubuntu) Only one port open - this is a web-focused box. The page title mentions “Arrexel’s Development Site”. ...

Introduction Shocker is a Linux machine on HackTheBox that teaches the infamous Shellshock vulnerability (CVE-2014-6271). The box name itself is a hint at the attack vector. We’ll exploit a vulnerable CGI script to gain initial access, then abuse sudo permissions on Perl to escalate to root. Difficulty: Easy OS: Linux Skills: CGI enumeration, Shellshock exploitation, sudo abuse Reconnaissance Nmap Scan nmap -sC -sV -oN nmap/shocker 10.129.2.16 Port Service Version 80 HTTP Apache 2.4.18 (Ubuntu) 2222 SSH OpenSSH 7.2p2 Two ports open. SSH on a non-standard port (2222 instead of 22) and Apache web server. ...