Professional Penetration TestingCTF6 – LAMP Sec
-
Upload
el-hacklab -
Category
Documents
-
view
219 -
download
5
description
Transcript of Professional Penetration TestingCTF6 – LAMP Sec
![Page 1: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/1.jpg)
Professional Penetration Testing CTF6 – LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
![Page 2: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/2.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Implementación – Sistema Objetivo (CTF6 LAMP Sec)
![Page 3: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/3.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Implementación – PenTester (BackTrack)+Windows (7)
![Page 4: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/4.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Implementación – Configuración de Red (NAT)
![Page 5: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/5.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Metodología Test de Penetración
• Objetivos, Límites, Equipamiento, Entornos, Prioridades, Técnicas.
Planeación y Determinación
de Alcances
• Técnicas de reconocimiento estratégicas: Activas y Pasivas.
Recolección de Información • Selección de targets,
Footprinting, Network Enumeration.
Enumeración
•Identificación manual y automática. Vulnerabilidades de red, S.O, Apps, personas, Dispositivos.
• Análisis Manual
Identificación y Análisis de
Vulnerabilidades • Explotación remota y local
• Elevación de privilegios
Explotación y Post-Explotación
de Vulnerabilidades
•Informes Ejecutivo y Técnico
• Estadísticas.
Reportes
![Page 6: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/6.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: NetworkMapping - Netdiscover
![Page 7: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/7.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Port Scanning - Nmap
![Page 8: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/8.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Port Scanning - Nmap
![Page 9: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/9.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Port Scanning - Nmap
![Page 10: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/10.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: O.S Identification - Nmap
![Page 11: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/11.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Web Analysis - Mantra
![Page 12: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/12.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Web Analysis – Burp Suite
![Page 13: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/13.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Web Analysis – Burp Suite
![Page 14: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/14.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Web Analysis – Burp Suite
![Page 15: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/15.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Web Analysis – Burp Suite
![Page 16: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/16.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Web Analysis – WhatWeb
![Page 17: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/17.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Web Analysis – WhatWeb
![Page 18: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/18.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Web Analysis – WhatWeb
![Page 19: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/19.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Source Code Analysis
![Page 20: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/20.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: List-Urls.py
![Page 21: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/21.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Manual Analysis
![Page 22: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/22.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Manual Analysis
![Page 23: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/23.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Manual Analysis
![Page 24: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/24.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Manual Analysis
![Page 25: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/25.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Manual Analysis
![Page 26: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/26.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Manual Analysis
![Page 27: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/27.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Manual Analysis
![Page 28: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/28.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Manual Analysis
![Page 29: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/29.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: OWASP DirBuster
![Page 30: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/30.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: OWASP DirBuster
![Page 31: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/31.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Directorios + Archivos
• http://192.168.10.141/templates/ • http://192.168.10.141/mail/ • http://192.168.10.141/cgi-bin/ • http://192.168.10.141/docs/ • http://192.168.10.141/files/ • http://192.168.10.141/js/ • http://192.168.10.141/css/ • http://192.168.10.141/lib/ • http://192.168.10.141/manual/ • http://192.168.10.141/conf/ • http://192.168.10.141/inc/ • http://192.168.10.141/logs/ • http://192.168.10.141/sql/ • http://192.168.10.141/error/ • http://192.168.10.141/actions/ • http://192.168.10.141/phpmyadmin/
![Page 32: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/32.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Directorios + Archivos
![Page 33: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/33.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Directorios + Archivos
![Page 34: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/34.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Directorios + Archivos
![Page 35: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/35.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Directorios + Archivos
![Page 36: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/36.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Directorios + Archivos
![Page 37: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/37.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Directorios + Archivos
![Page 38: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/38.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Directorios + Archivos
![Page 39: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/39.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Directorios + Archivos
![Page 40: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/40.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Directorios + Archivos
![Page 41: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/41.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Directorios + Archivos
![Page 42: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/42.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Directorios + Archivos
![Page 43: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/43.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Directorios + Archivos
![Page 44: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/44.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Directorios + Archivos
![Page 45: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/45.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Directorios + Archivos
![Page 46: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/46.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Directorios + Archivos
![Page 47: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/47.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Directorios + Archivos
![Page 48: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/48.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Directorios + Archivos
![Page 49: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/49.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Recolección de Información + Enumeración: Directorios + Archivos
![Page 50: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/50.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Exploración PHPMyAdmin
![Page 51: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/51.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Exploración PHPMyAdmin
![Page 52: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/52.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Exploración PHPMyAdmin
![Page 53: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/53.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
HASH Cracking
![Page 54: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/54.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Exploración PHPMyAdmin
![Page 55: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/55.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Exploración PHPMyAdmin
![Page 56: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/56.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Exploración PHPMyAdmin
![Page 57: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/57.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Brute Force MySQL - HASH
![Page 58: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/58.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Brute Force MySQL - HASH
![Page 59: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/59.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Identificación de Vulnerabilidades + Enumeración: Directorios + Archivos - Nikto
![Page 60: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/60.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Análisis de Vulnerabilidades + Enumeración: Source Code Analysis
![Page 61: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/61.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Análisis de Vulnerabilidades + Enumeración: Source Code Analysis
![Page 62: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/62.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Análisis de Vulnerabilidades + Enumeración: Source Code Analysis
![Page 63: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/63.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Análisis de Vulnerabilidades + Enumeración: Source Code Analysis
![Page 64: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/64.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1
![Page 65: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/65.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 - Login
![Page 66: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/66.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 - Login
![Page 67: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/67.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 - Login
![Page 68: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/68.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 - Login
![Page 69: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/69.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 70: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/70.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 71: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/71.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 72: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/72.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 73: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/73.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 74: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/74.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 75: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/75.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 76: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/76.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 77: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/77.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 78: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/78.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 79: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/79.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 80: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/80.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 81: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/81.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 82: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/82.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 83: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/83.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 84: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/84.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 85: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/85.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 86: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/86.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 87: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/87.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 88: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/88.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 89: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/89.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 90: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/90.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 91: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/91.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 92: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/92.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 93: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/93.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 94: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/94.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 95: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/95.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 96: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/96.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 97: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/97.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 98: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/98.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 99: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/99.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Explotación de Vulnerabilidades + Inyección + SQLi – Top 10 OWASP A1 – id=X
![Page 100: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/100.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Escalada de Privilegios – Post Exploitation
sh-3.2$ cat /etc/passwd root:x:0:0:root:/root:/bin/bash bin:x:1:1:bin:/bin:/sbin/nologin daemon:x:2:2:daemon:/sbin:/sbin/nologin adm:x:3:4:adm:/var/adm:/sbin/nologin lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin sync:x:5:0:sync:/sbin:/bin/sync shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown halt:x:7:0:halt:/sbin:/sbin/halt mail:x:8:12:mail:/var/spool/mail:/sbin/nologin news:x:9:13:news:/etc/news: uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin operator:x:11:0:operator:/root:/sbin/nologin games:x:12:100:games:/usr/games:/sbin/nologin gopher:x:13:30:gopher:/var/gopher:/sbin/nologin ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin nobody:x:99:99:Nobody:/:/sbin/nologin rpm:x:37:37::/var/lib/rpm:/sbin/nologin dbus:x:81:81:System message bus:/:/sbin/nologin avahi:x:70:70:Avahi daemon:/:/sbin/nologin mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
![Page 101: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/101.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Escalada de Privilegios – Post Exploitation
distcache:x:94:94:Distcache:/:/sbin/nologin apache:x:48:48:Apache:/var/www:/sbin/nologin nscd:x:28:28:NSCD Daemon:/:/sbin/nologin vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin rpc:x:32:32:Portmapper RPC user:/:/sbin/nologin rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin nfsnobody:x:65534:65534:Anonymous NFS User:/var/lib/nfs:/sbin/nologin sshd:x:74:74:Privilege-separated SSH:/var/empty/sshd:/sbin/nologin squid:x:23:23::/var/spool/squid:/sbin/nologin mysql:x:27:27:MySQL Server:/var/lib/mysql:/bin/bash pcap:x:77:77::/var/arpwatch:/sbin/nologin haldaemon:x:68:68:HAL daemon:/:/sbin/nologin dovecot:x:97:97:dovecot:/usr/libexec/dovecot:/sbin/nologin john:x:500:500::/home/john:/bin/bash linda:x:501:501::/home/linda:/bin/bash fred:x:502:502::/home/fred:/bin/bash molly:x:503:503::/home/molly:/bin/bash toby:x:504:504::/home/toby:/bin/bash
![Page 102: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/102.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Escalada de Privilegios – Post Exploitation
sh-3.2$ cat /etc/group root:x:0:root bin:x:1:root,bin,daemon daemon:x:2:root,bin,daemon sys:x:3:root,bin,adm adm:x:4:root,adm,daemon tty:x:5: disk:x:6:root lp:x:7:daemon,lp mem:x:8: kmem:x:9: wheel:x:10:root mail:x:12:mail news:x:13:news uucp:x:14:uucp man:x:15: games:x:20: gopher:x:30: dip:x:40: ftp:x:50:
![Page 103: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/103.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Escalada de Privilegios – Post Exploitation
lock:x:54: nobody:x:99: users:x:100: rpm:x:37: dbus:x:81: utmp:x:22: avahi:x:70: mailnull:x:47: smmsp:x:51: distcache:x:94: apache:x:48: nscd:x:28: utempter:x:35: floppy:x:19: vcsa:x:69: rpc:x:32: rpcuser:x:29: nfsnobody:x:65534: sshd:x:74:
![Page 104: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/104.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Escalada de Privilegios – Post Exploitation
squid:x:23: mysql:x:27: pcap:x:77: slocate:x:21: haldaemon:x:68: dovecot:x:97: john:x:500: linda:x:501: fred:x:502: molly:x:503: toby:x:504:
![Page 105: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/105.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Escalada de Privilegios – Post Exploitation
![Page 106: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/106.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Escalada de Privilegios – Post Exploitation
![Page 107: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/107.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Escalada de Privilegios – Post Exploitation
![Page 108: Professional Penetration TestingCTF6 – LAMP Sec](https://reader033.fdocuments.us/reader033/viewer/2022052702/568bd8761a28ab2034a37085/html5/thumbnails/108.jpg)
Professional Penetration Testing – CTF 6 LAMP Sec
@ElHackLab @Autodidactas_Co #ElHackLab
Escalada de Privilegios – Post Exploitation