Explosion (RDP)

As usually start off scanning with snap. The IP for my remote box is 10.129.164.96.

nmap -sV 10.129.164.96

As shown below, ports 445/TCP and 3389/TCP are open. I’ll go ahead and try RDP into the box to “check the front door”. xfreerdp is a linux tool that established RDP connections.

/cert: Specifies to the scrips that all security certificate usage should be ignored.

/u: Specifies the login username.

/v:{target_IP} : Specifies the target IP.

I tried multiple combinations of usernames and passwords. Administrator with no password worked!

Xfreerdp /cert:ignore /u:Administrator /v:10.129.164.96

Once logged in, flag.txt is on the desktop.

--

--

--

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

AMA Recap BYOB X Twilight

Introducing: KEXPad, the official KuDOS Launchpad!

{UPDATE} Toy 3D Truck RC Jogo para o Real Novo simulador de condução Jogos gratuitos de aventura…

{UPDATE} Cargoo Truck Hack Free Resources Generator

Is this an Ubuntu-based Botnet deploying Tor Relays and Bridges?

(Open Short Path First) Routing Protocol

ASSIGNMENT 4 — IT INFRASTRUCTURE SECURITY

What To Do When You Have An Insider Threat

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
ErvinTista

ErvinTista

More from Medium

KnightCtf Jan 2022

HireMe challenge

THE USE OF THE INTERNET IN THE TIMES OF KAKWENZA RUKIRABASHAIJA.

Cybersecurity : A Win-Win For The African Tech