简介
下载
- DC-3-2.zip (Size: 1005 MB)
- Download: http://www.five86.com/downloads/DC-3-2.zip
- Download (Mirror): https://download.vulnhub.com/dc/DC-3-2.zip
- Download (Torrent): https://download.vulnhub.com/dc/DC-3-2.zip.torrent ( Magnet)
流程
信息收集
主机探活
kali中使用arp-scan进行主机探活
arp-scan --interface eth0 192.168.0.0/24
经过筛选可以知道192.168.0.152 是DC-3的ip
端口扫描
nmap -sC -sV -p- 192.168.0.152
发现这里只是开了80端口
看下80端口,通过wappalyzer,发现用的是JoomlaCMS,而且用的是PHP
同时主页也给我们提示,表明这个靶机只有一个flag
DC-3
Home
Welcome to DC-3Details
- Written by admin
Welcome to DC-3.
This time, there is only one flag, one entry point and no clues.
To get the flag, you'll obviously have to gain root privileges.
How you get to be root is up to you - and, obviously, the system.
Good luck - and I hope you enjoy this little challenge.