♋...Learn Harder, Keep Humble, Not For The Fain Heart !, Respect Others, Try Harder...♋

Thursday, October 18, 2012

Privilege Escalation : Metasploitable 2


Good  night, In this time I will trying to find vulner on Metasploitable and Getting the root

- The first is information gathering from target, In here I use nmap


See on above, there are much information that were found.. 

- Second is trying to connect MySQL using command like below :
root@bt:~# mysql -h 192.168.56.102

we was on Mysql now

- Then run command like below to show the data of passwords
mysql> select load_file('/etc/passwd');
so we will got the results like below :


On above there are more list username and password, and I must try one by one for login.
to shorten the time I direct to trying the user name msf admin and password 'msfadmin'


Trying to login on Metasploitable


and...


Now, We was on root of Metasploitable, For into superuser type command like below and press password 'msfadmin' again


But, This way too short. On next post I will show step by step.

Thanks...

No comments:

Post a Comment