Basic pentesting 1

Data

29 Settembre 2019

Validations

4756 Compromissions 32%

Note

153 votes

Description

This is a small boot2root VM I created for my university’s cyber security group. It contains multiple remote vulnerabilities and multiple privilege escalation vectors. I did all of my testing for this VM on VirtualBox, so that’s the recommended platform. I have been informed that it also works with VMware, but I haven’t tested this personally.

This VM is specifically intended for newcomers to penetration testing. If you’re a beginner, you should hopefully find the difficulty of the VM to be just right.

Your goal is to remotely attack the VM and gain root privileges. Once you’ve finished, try to find other vectors you might have missed!

Temps de compromission

2 heures

Système d'exploitation

linux

démarrer cet environnement virtuel

Résultats du CTF alltheday pour Basic pentesting 1

Pseudonyme	Environnement Virtuel	Nombre d'attaquant	Date de début	Environnement compromis en
-	Basic pentesting 1	0	11 gennaio 2019 to 15:07	-
-	Basic pentesting 1	0	29 novembre 2018 to 17:20	-
-	Basic pentesting 1	0	14 novembre 2018 to 14:59	-

177 Environnements Virtuels

Résultats	Cognome	Validations ↓↑	Difficulté	Autore	Note
	Metasploitable 2	40% 8663
	Basic pentesting 1	32% 4756
	LAMP security CTF5	25% 3894
	Docker - I am groot	51% 3138		Ech0
	LAMP security CTF4	35% 2725
	SSH Agent Hijacking	26% 2393		mayfly
	SSRF Box	18% 1815		sambecks
	Metasploitable	12% 1733
	Mr. Robot 1	21% 1646
	End Droid	35% 1352
	Imagick	22% 1053		sambecks
	SamBox v2	13% 990		sambecks
	Docker - Sys-Admin’s Docker	40% 976		Ech0
	Kioptrix level 2	24% 972
	LAMP security CTF7	39% 891
	VulnVoIP	17% 861
	SamBox v1	7% 727		sambecks
	Docker - Talk through me	42% 664		Ech0
	Django unchained	23% 634		TiWim
	Well-Known	10% 627		sm0k
	Windows - Group Policy Preferences Passwords	26% 613
	LAMP security CTF6	18% 606
	Kioptrix level 3	32% 575
	Shared Objects Hijacking	13% 568		das
	BreakingRootme2020	15% 521		Laluka
	Windows XP pro 01	5% 498		g0uZ
	Awky	8% 497		sbrk
	Windows - KerbeRoast	18% 482
	Rootkit Cold Case	16% 470		franb
	Kioptrix level 4	34% 462
	Websocket - 0 protection	6% 455		Worty
	Windows - ASRepRoast	35% 441
	Bluebox - Microsoft Pentest	4% 422
	pWnOS	32% 402
	Hackademic RTB1	19% 364
	DC-1	15% 348
	SamBox v3	5% 334		sambecks
	Bluebox 2 - Pentest	3% 311		sambecks
	Exploit KB Vulnerable Web App	12% 306
	SAP Pentest	7% 293		iggy
	Holynix v1	24% 292
	LAMP security CTF8	14% 291
	/dev/random : Pipe	5% 236
	A bittersweet shellfony	12% 234		mayfly
	LordoftheRoot	25% 232
	Hopital Bozobe	8% 230		sambecks
	Acid: Server	12% 219
	FristiLeaks 1.3	28% 216
	SkyTower	24% 214
	Ubuntu 8.04 weak	5% 206		g0uZ