TryHackMe ! RootMe - PHP Reverse Shell// walk-through

Показать описание

Disclaimer

This is educational purpose video only. I did not harm anyone I just do ctfs and make that walkthrough and explain what of the method here in use, so please don't use this because hacking is crime if you do this then it's can land you in jail.
I'm not support any kind of illegle or malicious hacking.

=================
RootMe

A ctf for beginners, can you root me?
-----------------------------------------

Task 1 Deploy the machine
Connect to TryHackMe network and deploy the machine. If you don't know how to do this, complete the OpenVPN room first.

1 Deploy the machine

Task 2 Reconnaissance
First, let's get information about the target.

1 Scan the machine, how many ports are open?
2 What version of Apache are running?
3 What service is running on port 22?
4 Find directories on the web server using the GoBuster tool.
5 What is the hidden directory?

Task 3 Getting a shell
Find a form to upload and get a reverse shell, and find the flag.

Task 4 Privilege escalation
Now that we have a shell, let's escalate our privileges to root.
Search for files with SUID permission, which file is weird?
Find a form to escalate your privileges.
-----------------------------

00:00-Deploy the machine and start
00:30-Nmap scan to check ports
01:56-searching hidden directory using gobuster tool
02:49-web enumration
03:36-check hidden directory
04:39-searching php-reverse-shell payload
06:42-upload payload on machine and try to get back shell
08:26-update the shell for proper use
11:22-i had lost my access so let repate that same process
12:50-privilage esculation
14:02-try to get suid using python
15:57-got root access

-------------------------------
#yesspider

please support me on patreon

--------------------------------------------------

Рекомендации по теме

Комментарии

how can it be that in every walkthrough, launching curl with the /shell.php5 (or whatever) works and when I run it neither does netcat get any data but I get a Connection refused error

omegazone_osu

can some explain to me how he does not starting the attackbox but still can do the try hack me level

akm

Wow, thank you for creating and sharing this video!

scottwilliams

Hi. The server I am trying to upload the reverse shell only accepts images. But changing the extension of the file to jpg or png etc is not working either. How else can I bypass and upload it?

samkhisa

Obrigado, aprendi muito com este vídeo!!!

magoosz

TryHackMe ! RootMe - PHP Reverse Shell// walk-through

TryHackMe! RootMe - PHP File Upload Bypass

TryHackMe - RootMe! Complete Beginner Walkthrough!

TryHackMe ! RootMe - PHP Reverse Shell// walk-through

TryHackMe: RootMe (bypass PHP ext restriction via uploads)

TryHackMe! RootMe - Complete Walkthrough

TryHackMe ! RootMe PHP Reverse Shell walk through ETHICAL HACKING...

[THM] RootMe Walkthrough | PHP Reverse Shell

Hacking Linux -- RootMe | Walkthrough (TryHackMe)

TryHackMe! RootMe - Uploading Shells & SUID // CTF (Easy)

RootMe TryHackMe Tutorial (Easy)

TryHackMe RootMe Walkthrough Tutorial - Pentesting

[Tryhackme] RootMe Write Up!

Tryhackme rootme bypass php ext restriction via uploads

tryhackme RootMe Walkthrough

TryHackMe: RootMe Walkthrough

Tryhackme -Rootme A beginners journey

TryHackMe RootMe Walkthrough (Exploiting File Upload)

TryHackMe RootMe - Walkthrough | CTF For Beginners

TryHackMe RootMe CTF Walkthrough

TryHackMe Root Me Walkthrough: Complete Guide to Solving the CTF

Rootme Walkthrough - TryHackMe

THM Capture The Flag (RootMe) - PHP File Upload Bypass (Web Vuln)

TryHackMe // RootMe

RootMe TryHackMe Walk-Through