Protocols and Servers 2

March 01, 2024

Task 1: Introduction

Task 2: Sniffing Attack

Task 3: Man-in-the-Middle (MITM) Attack

Task 4: Transport Layer Security (TLS)

Task 5: Secure Shell (SSH)

First we have to ssh to user mark and find its kernel release

username: mark
pass: XBtc49AB

Then for the second task we have to know the KBs for the file book.txt. We have to transfer the book.txt from the victim's machine to our attacker machine.

Just open up a python web server in the victim's machine

python3 -m http.server

Then we will use wget command to retrieve the file and we will see the KBs download size of that specific file.

wget http://10.10.128.143:8000/book.txt

Task 6: Password Attack

We will just use hydra to brute force for the password of user "lazie"....

hydra -t 16 -l lazie -P /usr/share/wordlists/rockyou.txt imap://10.10.248.196:143

Task 7: Summary

PreviousNmap Live Host Discovery NextProtocols and Servers

Last updated 1 year ago