Be sure to scroll down and view the whole post as there is both audio and video coverage of today's episode! Intro Today I'm going to walk you through pwning the Billy Madison VM hosted at VulnHub. To be blunt, there are way better write-ups and videos walking through the »
Introduction: I got some really fun and positive feedback after releasing my Tommy Boy vulnerable VM on VulnHub in July. I thought I would be done making vulnerable VMs for a long time. But shortly after I caught myself daydreaming about my favorite childhood/teenage movies, and I couldn't shake »
Intro: The following is a semi-spoilerish walkthrough of the Tommy Boy VM from Vulnhub by 7MinSec. Semi-spoilery write-up: A port scan will reveal port 80 and 8008 open. Explore them thoroughly, including /robots.txt, page source code, dirb results, etc. That recon will lead you to a content management system »
Introduction: I've long been a huge fan of the movie Tommy Boy and also a fan of trying to hack the vulnerable VMs hosted at VulnHub. Last month I decided to combine those two loves by creating a vulnerable virtual machine with a Tommy Boy theme! The result? Tommy Boy »
In this episode, I share a short list of virtual landmines you'll want to avoid when building your vulnerable VM for vulnhub.com: Don't f up your mysql root password Remember that Web services may install with a hard coded IP so you'll need to account for that when the »
Intro The following is a semi-spoilerish walkthrough of the Mr. Robot VM from Vulnhub by Jason (couldn't find a link for him! Hrmm....mysterious!). Write-up Flag 1: An NMAP scan will reveal port 80/443 open. Do the "usual suspects" scan of the Web environment - like nikto, »
Intro The following is a semi-spoilerish walkthrough of the Sidney VM from Vulnhub by Knightmare2600. Write-up Running NMAP on this rascal reveals port 80 to be open. I conducted a dirb scan and looked at the "usual suspects" (nikto results, /robots.txt, source code, etc.) to determine the »
Intro The following is a semi-spoilerish walkthrough of the Stapler VM from Vulnhub by g0tmi1k. Write-up An NMAP scan reveals all sorts of goodies on this little rascal, including TCP 666 (DOOM?!), FTP, Samba shares a few Web ports - and more! I cut Sparta loose on the host as »
Update 6/15: Sorry, I know I said on today's episode I was going to do a video version of this VM, but I'm jumping ship on that idea. The reason is I'm already excited about making a podcast + video version of a different VM. And, selfishly, that also allows »
Intro The following is a semi-spoilerish walkthrough of the Milnet VM from Vulnhub by @teh_warriar. Disclaimer I'm intentionally not posting a full walkthrough for a few reasons: Full (and better) walkthroughs already exist online. By not posting the full details, it allows readers the chance to get just a »
Intro The following is a semi-spoilerish walkthrough of the SickOS 1.2 VM from Vulnhub by @D4rk36. Disclaimer I'm intentionally not posting a full walkthrough for a few reasons: Full (and better) walkthroughs already exist online. By not posting the full details, it allows readers the chance to get just »
