TryHackMe - Develpy

Develpy Enumeration Link: https://tryhackme.com/room/bsidesgtdevelpy Author: https://tryhackme.com/p/stuxnet Host: 10.10.36.158 Let’s start with a rustscan again the machine (as always) to quickly enumerate open ports. ┌──(root💀b0x)-[~/THM/Develpy] └─# rustscan -a 10.10.36.158 --ulimit 5000 -b 4500 -- -sC -sV The Modern Day Port Scanner. ________________________________________ : https://discord.gg/GFrQsGy : : https://github.com/RustScan/RustScan : -------------------------------------- Please contribute more quotes to our GitHub https://github.com/rustscan/rustscan [~] The config file is expected to be at "/root/.rustscan.toml" [~] Automatically increasing ulimit value to 5000....

April 23, 2021 · 7 min · Umar_0x01

SUID Enumeration & Exploitation - The Automated Way!

What the heck is SUID3NUM!? Are you also tired of finding && enumerating possibly exploitable SUID binaries like me!? Only to miss the ones you were going to escalate your priviliges with? Welp, I just happened to develop a solution: SUID 3NUM. (Self promote, I will! - Yoda) A (not-so-cool-as-it-seems-like) standalone script supporting both python2 & python3 to find out all SUID binaries in a linux box and do the following:...

October 23, 2019 · 3 min · Umar_0x01