80
Mapping
robots.txt:
.svn:
.DS_STORE
Directory Busting
PHP
Check phpinfo or phpmyadmin:
Using git-dumper:
Now we can us this exploit
Last updated
robots.txt:
.svn:
.DS_STORE
Check phpinfo or phpmyadmin:
Using git-dumper:
Now we can us this exploit
Last updated
Running dirb we notice: There is a git directory
There is bb-config.php:
We can login at /bb-admin:
Logging in with admin@bullybox.local : Playing-Unstylish7-Provided
After changing the ip:
Now we get a shell:
Now check id: We are sudo group so with sudo su