Network Services 2

NFS: Network File System
Understanding NFS



Enumerating NFS


Lets run nmap scans to get information on the machine




Lets mount the file







Exploiting NFS


Lets follow these steps

Now login through ssh and run the command "bash -p" in the home directory

We are root

Lets read the flag

SMTP: Simple Mail Transfer Protocol
Understanding SMTP




Enumerating SMTP

Lets run nmap scans to get information about the open ports on the machine



Lets start Metasploit and look for the module they mentioned and then set the options






Lets search for what MTA is running the SMTP server

This can also be seen in the output after we ran the enumeration module

Lets do the next steps


Lets run the exploit


Exploiting SMTP


Lets use hydra to crack the password


Lets login through ssh and read the flag

MySQL: Structured Query Language
Understanding MySQL



Enumerating MySQL

Lets run a nmap port scan



Lets login into MySQL as root


Lets launch Metasploit and search for the module and look at what options we have to set


Lets set the options

Now lets run the module


Lets set the SQL parameter to show databases and run the exploit


Exploiting MySQL

Lets follow the steps they have given




Lets do the next step




Lets save the username and hash into a file called hash.txt

Now lets crack it with John The Ripper


Lets now login through ssh and get the flag

Last updated
Was this helpful?