NOTICE: Educational purposes only! Hi, I want to show you how easy it is to find a vulnerable server on the internet. Okey guys, so now, firstly we need to have some TOR client for anonymity ;) Before we begin, look at the following tools tor nyx proxychains-ng shodan curl nmap $ tor & $ nyx -i 127.0.0.1:9052 Then we can test, if the tor is working correctly with proxychains...
If you want to register to CTP, you will need something they call Registration Code and Secret Key. So firstly, there is interesting file /fc4.js function fc4me(srvstr) { if(!document.pleazfc4me.email.value || !document.pleazfc4me.securitystring.value) { alert("Please fill in all the required fields!"); return false; } if(document.pleazfc4me.securitystring.value != hexMD5("\x74\x72\x79\x68\x61\x72\x64\x65\x72"+srvstr)) { alert("Registration Authorization String not accepted! Try Harder! "); return false; } else { document.pleazfc4me.submit(); } } So all you need to do is setup some js variables in browser console and call fc4me(srvstr)...
moongen nmap-vulners is great script for automatically find possible issues of services on opened ports. It’s partly replacing Nessus, but it’s open source. It is using vulners database for finding possible vulnerabilities. Vulners is also great tool, because it allows check all your installed packages. You can find it in audit section. taskwarrior shamir secret sharing restic khal