Read more. November 09, E Computer Engineering , C. H and I am doing vulnerability assessment for different clients in Mumbai. And yes, it is one the difficult mission you could ever face. Back in Dec I was really bored with the conventional vulnerability assessment thing, I wanted to do some more exploitation and some black hat stuff. But in our job we were not allowed to do so, as the environment used to be critical most of the time and time for completing the task was less.
As seen above there are many frameworks installed for exploitation. We will be working with Basilic 1. Basilic is a bibliography server that is used for research labs. It helps in the automation and diffusion of the research publication on the internet. It also generates a web page from the publication database. This framework helps with indexing, searching and various other options.
Searching for an exploit on the internet we will find CVE which elaborates an improper input validation by Basilic on the following URL:. Due to the output encoding of SecurityFocus, it seems to be obfuscated.
An actual exploit can be seen at this link:. We can execute a system command using a file parameter to get a reverse shell which is as follows:. Searching for an exploit in exploit-db with searchsploit tool in Kali Ruby exploit gives the following screen:.
If the language is ruby, then it will also be present in Metasploit which can be described as follows:. We have thus successfully exploited a command injection vulnerability in basilic and got the www-data privilege on the target. A new tab for your requested boot camp pricing will open in 5 seconds. If it doesn't open, click here. PentestBox runs on the host machine without any need for a virtual machine.
It is very light on the Disk as well, it requires less than a third of what linux pentesting distro does. PentestBox contains a version of Mozilla Firefox Browser with nearly all its security addons. To know the complete list of addons, please click here.
It contains an update feature through which you can keep your tools updated. To know more about update feature, please click here. Consider an environment where you wanted to use PentestBox on many computers at the office, lab, etc. Instead of installing PentestBox on each and every computer, you can just install it on one computer and share that folder as a drive to the other computers on the same network. To find out more about this feature, click here. But this was introduced to turn low-end systems into a Pentesting Environment.
There are two variants of PentestBox, one without Metasploit and other one with Metasploit. Antiviruses and Firewalls needs to be switched off to install and operate the version with Metasploit.
Download any of the variant by clicking respective download button present on the right side. Now refer to tools. If you face any problems or have any questions, please check faq. Connect with us on Facebook or Twitter to get updates about PentestBox. Found this project interesting! There are many ways you can contribute, check docs.
0コメント