in here i use nessus to find the target information
end then click the ip address, and will display likes under this
i choice port 10000 to crack, because port 10000 have loopholes medium level, it means i can crack the port.
after that, click port 10000 and will display likes under this
choose one of the medium level, in here i choose medium level with plugin ID 21785, click and will display likes under this
from here i know the version used a target, the version under 1.290
after that, i search with exploitdb, write command "./searchsploit webmin", why webmin?? because the loopholes is webmin version under 1.290
from information obtained, i skewer with result nessus scaning, after get it skewer, open the platform write "cd platforms/multiple/remote (enter)" and "perl 2017.pl", will display likes under this
after that i follow the command at Example, with write "perl 2017.pl 192.168.0.21 10000 /etc/pass 0", and will display like under this
well in here I can find out the user and password used, after that write command "perl 2017.pl 192.168.0.21 10000 /etc/shadow 0", and will display likes under this
Tidak ada komentar:
Posting Komentar