|
EH-Net
|
|
May 22, 2013, 02:15:19 AM
|
 Show Posts
|
|
Pages: 1 2 3 [4] 5 6 ... 8
|
|
46
|
Resources / Tools / Re: de-ice.net
|
on: September 02, 2012, 09:17:39 PM
|
hi guys i have some quiz about de-ice.net
Im running backtrack and it in vmware both using dhcp disabled host only adapter and i ran ics to give the vms internet connection. So both the using ice dhcp with this net id 192.168.137.0/24
So here is the quiz:
1. When i run this command:
Nmap -sP 192.168.137.0/24 i cant find the de-ice.net's ip adderss would u please tell me why?
2. Why ifconfing is not exist in de-ice.net
It's been a while, but ifconfig should be there. Have you looked in /sbin? Try the locate and find command as well. |
|
|
|
|
50
|
Resources / Tutorials / Re: Basic Priv Esculation for newbi
|
on: August 31, 2012, 07:29:39 AM
|
for that service of-course but i want to get os level access any idea??
We don't know anything about the server you're accessing and you haven't given us any information about it other than you've got an ftp account. Can you write files anywhere? Can you login as the same user using a different service? Are there other services running? Are there files you can download? Have you done enough enumeration and research? Just because you've got access to one service, doesn't mean you can escalate it to a privileged user. It could be a dead end. |
|
|
|
|
54
|
Resources / Tutorials / Re: Basic Priv Esculation for newbi
|
on: August 29, 2012, 07:55:32 PM
|
thank u jamie r like always good article i knew some of these technics but i have a question. I hack the ftp admin account then how can i esculate my priv? Its a linux server
Read the above article and the links it points to. Privilege escalation isn't an exact science. It depends a lot on what's on the server and what you have access to. The only way to get anywhere is to enumerate, test, fail, try again. |
|
|
|
|
56
|
Resources / News from the Outside World / Re: Spot the problem.....
|
on: August 28, 2012, 10:11:26 PM
|
So do you think they store the password in clear text... and the tech support people have access to view your password!
"A hint to your password is that it begins with s and ends with j"
Bit of a fail I think!
I assumed that was more like a hint the user provides to himself, like "My mother's maiden name" sort of thing. |
|
|
|
|
58
|
Ethical Hacking Discussions and Related Certifications / OS / Re: Remote Code Execution
|
on: August 27, 2012, 11:43:13 PM
|
|
Doesn't even have to be server software. A vulnerable music player can load a a specially crafted MP3 file, which in turn executes code and opens a backdoor to the computer. Almost everyone installs third party software, so there's the chance that something installed is vulnerable to something.
|
|
|
|
|
59
|
Ethical Hacking Discussions and Related Certifications / OSCP - Offensive Security Certified Professional / Re: Finally took the plunge, started 08/05/12
|
on: August 27, 2012, 01:41:57 PM
|
Offensive course always seem to get great reviews I guess that why so many people want to jump in and do them.
At the risk of being branded for heresy, I have to say this...I don't understand the overwhelmingly positive reviews of the OSCP. IMHO, the OSCP training is far from perfect - there is plenty of room for improvement. I've finished the core modules of the OSCP and am working through the labs at the moment. I would have to say that, instructionally speaking, the quality level could best be described as uneven. There are some excellent modules (BoFs to name one) but there are also some modules that fall short. Elaborate further please. A negative critique can be just as valuable as positive ones. |
|
|
|
|
Loading...
|
Tutorials : Need guidance 
