vulnhub

A 17-post collection

7MS #235: Pwning Billy Madison

Be sure to scroll down and view the whole post as there is both audio and video coverage of today's episode! Intro Today I'm going to walk you through pwning the Billy Madison VM hosted at VulnHub. To be blunt, there are way better write-ups and videos walking through the »

Billy Madison 1.0

Introduction: I got some really fun and positive feedback after releasing my Tommy Boy vulnerable VM on VulnHub in July. I thought I would be done making vulnerable VMs for a long time. But shortly after I caught myself daydreaming about my favorite childhood/teenage movies, and I couldn't shake »

7MS #223: Vulnhub Walkthrough - Tommy Boy

Intro: The following is a semi-spoilerish walkthrough of the Tommy Boy VM from Vulnhub by 7MinSec. Semi-spoilery write-up: A port scan will reveal port 80 and 8008 open. Explore them thoroughly, including /robots.txt, page source code, dirb results, etc. That recon will lead you to a content management system »

Tommy Boy 1.0: A Vulnerable Virtual Machine

Introduction: I've long been a huge fan of the movie Tommy Boy and also a fan of trying to hack the vulnerable VMs hosted at VulnHub. Last month I decided to combine those two loves by creating a vulnerable virtual machine with a Tommy Boy theme! The result? Tommy Boy »

7MS #213: Building a Vulnerable VM (The Prequel)

In this episode, I share a short list of virtual landmines you'll want to avoid when building your vulnerable VM for vulnhub.com: Don't f up your mysql root password Remember that Web services may install with a hard coded IP so you'll need to account for that when the »

7MS #210: Vulnhub Walkthrough - Mr. Robot

Intro The following is a semi-spoilerish walkthrough of the Mr. Robot VM from Vulnhub by Jason (couldn't find a link for him! Hrmm....mysterious!). Write-up Flag 1: An NMAP scan will reveal port 80/443 open. Do the "usual suspects" scan of the Web environment - like nikto, »

7MS #207: Vulnhub Walkthrough - Sidney

Intro The following is a semi-spoilerish walkthrough of the Sidney VM from Vulnhub by Knightmare2600. Write-up Running NMAP on this rascal reveals port 80 to be open. I conducted a dirb scan and looked at the "usual suspects" (nikto results, /robots.txt, source code, etc.) to determine the »

7MS #206: Vulnhub Walkthrough - Stapler

Intro The following is a semi-spoilerish walkthrough of the Stapler VM from Vulnhub by g0tmi1k. Write-up An NMAP scan reveals all sorts of goodies on this little rascal, including TCP 666 (DOOM?!), FTP, Samba shares a few Web ports - and more! I cut Sparta loose on the host as »

7MS #203: Vulnhub Walkthrough - FristiLeaks

Update 6/15: Sorry, I know I said on today's episode I was going to do a video version of this VM, but I'm jumping ship on that idea. The reason is I'm already excited about making a podcast + video version of a different VM. And, selfishly, that also allows »

7MS #200: Vulnhub Walkthrough - Milnet

Intro The following is a semi-spoilerish walkthrough of the Milnet VM from Vulnhub by @teh_warriar. Disclaimer I'm intentionally not posting a full walkthrough for a few reasons: Full (and better) walkthroughs already exist online. By not posting the full details, it allows readers the chance to get just a »

7MS #197: Vulnhub Walkthrough - SickOS 1.2

Intro The following is a semi-spoilerish walkthrough of the SickOS 1.2 VM from Vulnhub by @D4rk36. Disclaimer I'm intentionally not posting a full walkthrough for a few reasons: Full (and better) walkthroughs already exist online. By not posting the full details, it allows readers the chance to get just »