HTB — Legacy

1 min readSep 30, 2019

Machine IP — 10.10.10.4

Nmap

Here we can identify that the windows xp microsoft-ds is outdate and it’s vulnerable to ms-08–67

Found exploit at github then i modified the script by changing the shellcode and then i executed , and then started nc at our local host

Using

python ms-08_67.py 10.10.10.4 6 445

And here we get our administrator shell

…….cowabunga 😆

Sign up to discover human stories that deepen your understanding of the world.

Free

Distraction-free reading. No ads.

Organize your knowledge with lists and highlights.

Tell your story. Find your audience.

Membership

Read member-only stories

Support writers you read most

Earn money for your writing

Listen to audio narrations

Read offline with the Medium app

Written by Raj Singh

54 Followers

9 Following

Security Researcher, Product Security Engineer

No responses yet

Write a response

What are your thoughts?

Also publish to my profile

Recommended from Medium

How I Am Using a Lifetime 100% Free Server

Harendra

How I Am Using a Lifetime 100% Free Server

Get a server with 24 GB RAM + 4 CPU + 200 GB Storage + Always Free

Oct 26, 2024

9.4K

172

Human Parts

Devon Price

Laziness Does Not Exist

Psychological research is clear: when people procrastinate, there's usually a good reason

Mar 23, 2018

343K

2212

Lists

Best of The Writing Cooperative

67 stories511 saves

Jeff Bezos Says the 1-Hour Rule Makes Him Smarter. New Neuroscience Says He’s Right

Jessica Stillman

Jeff Bezos Says the 1-Hour Rule Makes Him Smarter. New Neuroscience Says He’s Right

Jeff Bezos’s morning routine has long included the one-hour rule. New neuroscience says yours probably should too.

Oct 30, 2024

25K

735

Kris Gage

How to really know you’re in love

Because most of “the signs” they tell you are garbage

Aug 3, 2017

154K

1232

$100-$20k worth Stored XSS Vulnerability | Hidden Methods

InfoSec Write-ups

It4chis3c

$100-$20k worth Stored XSS Vulnerability | Hidden Methods

Hidden Methods to bypass restriction to find Stored XSS in Bug Bounties

Feb 26

227

The Medium Blog

The Medium Newsletter

Why writing is just like running

Botanical journaling + beating writer’s block (Issue #284)

4d ago

2.1K

See more recommendations

Help
Status
About
Careers
Press
Blog
Privacy
Terms
Text to speech
Teams

HTB — Legacy

Sign up to discover human stories that deepen your understanding of the world.

Free

Membership

Written by Raj Singh

No responses yet

More from Raj Singh

Exploiting vulnerabilities in iOS Application

Hello Everyone, Here I’m going to share one of my findings which I got while enumerating iOS application, below are my findings and the…

VulnHub — Lord Of The Root: 1.0.1

Nmap

Vulnhub — SolidState

Nmap

VulnHub — Temple-Of -Doom

Nmap

Recommended from Medium

How I Am Using a Lifetime 100% Free Server

Get a server with 24 GB RAM + 4 CPU + 200 GB Storage + Always Free

Laziness Does Not Exist

Psychological research is clear: when people procrastinate, there's usually a good reason

Lists

Best of The Writing Cooperative

Jeff Bezos Says the 1-Hour Rule Makes Him Smarter. New Neuroscience Says He’s Right

Jeff Bezos’s morning routine has long included the one-hour rule. New neuroscience says yours probably should too.

How to really know you’re in love

Because most of “the signs” they tell you are garbage

$100-$20k worth Stored XSS Vulnerability | Hidden Methods

Hidden Methods to bypass restriction to find Stored XSS in Bug Bounties

Why writing is just like running

Botanical journaling + beating writer’s block (Issue #284)

HTB — Legacy

Sign up to discover human stories that deepen your understanding of the world.

Free

Membership

Written by Raj Singh

No responses yet

More from Raj Singh

Exploiting vulnerabilities in iOS Application

Hello Everyone, Here I’m going to share one of my findings which I got while enumerating iOS application, below are my findings and the…

VulnHub — Lord Of The Root: 1.0.1

Nmap

Vulnhub — SolidState

Nmap

VulnHub — Temple-Of -Doom

Nmap

Recommended from Medium

How I Am Using a Lifetime 100% Free Server

Get a server with 24 GB RAM + 4 CPU + 200 GB Storage + Always Free

Laziness Does Not Exist

Psychological research is clear: when people procrastinate, there's usually a good reason

Lists

Best of The Writing Cooperative

Jeff Bezos Says the 1-Hour Rule Makes Him Smarter. New Neuroscience Says He’s Right

Jeff Bezos’s morning routine has long included the one-hour rule. New neuroscience says yours probably should too.

How to *really* know you’re in love

Because most of “the signs” they tell you are garbage

$100-$20k worth Stored XSS Vulnerability | Hidden Methods

Hidden Methods to bypass restriction to find Stored XSS in Bug Bounties

Why writing is just like running

Botanical journaling + beating writer’s block (Issue #284)

How to really know you’re in love