Kioptrix 1 Walkthrough

Share on facebook
Facebook
Share on twitter
Twitter
Share on linkedin
LinkedIn
Share on whatsapp
WhatsApp

Kioptrix is one of the best series for those who are trying to make their way for Penetration Testing. Even it is recommended
for a lot of certification including OSCP.
This walkthrough is of Kioptrix 1
Download:https://www.vulnhub.com/entry/kioptrix-level-1-1,22/
I was using Vbox and I faced some problem during installation of Kioptrix on VBox.I followed these steps to let it run.
1. Create the new Virtual Machine without choosing any disk.
2. Under the setting tab, select storage, Under the IDE controller add the new existing disk (select your VMDK file of Kioptrix).
3. #Setting>ports>USB> untick “Enable USB Controller”
#Setting >Network>Advanced > from the drop down select adaptor type “PCnet-PCI II           (Am79c970A)”
#Setting > Audio > Untick “Enable Audio”
Let’s Start the Dirty game.
Screenshot 2018-12-04 at 1.13.28 PM
After Successfully installing Kioptrix, I was being greeted by this page. So first I have to find the IP address of this machine.
After running “netdiscover” command I got the IP of kioptrix which was 10.0.2.21. Now next step was scanning my target.
Screenshot 2018-12-04 at 1.19.03 PM.png
I used “nmap -sV 10.0.2.21” to scan.
Screenshot 2018-12-04 at 1.26.28 PM.png
Hereafter scanning I found port 80 is open, after browsing to that server I found nada except for this test page.
Screenshot 2018-12-04 at 1.32.29 PM.png
After this, I tried for samba as smb always intrigues me.
I tried “enum4linux 10.0.2.21” but I didn’t get any version details. (awkward)
This time I tried “Metasploit” and got smb version= 2.2.1a
Screenshot 2018-12-04 at 2.08.21 PM.png
After googling I downloaded a working exploit: https://www.exploit-db.com/exploits/10
I compiled and ran this exploit and got the access.
Screenshot 2018-12-04 at 2.18.29 PM
Now next part was to get the root access. But it was way easier than I thought, I just checked by typing “whoami” and damn I was ROOT.
Visit: https://www.azureskynet.com/
Visit:https://www.cosmicskills.com/
 
 

Share on facebook
Facebook
Share on twitter
Twitter
Share on linkedin
LinkedIn
Share on whatsapp
WhatsApp

Leave a Comment

Your email address will not be published. Required fields are marked *

Scroll to Top