admin, Author at My Tech Blog

Kali Linux – Arrow keys not working

Posted on February 7, 2022February 7, 2022 by admin

Twice now, I have loaded my VM for a day of digging around HTB and found that none of my arrow keys work in my terminal. The enter key sometimes works, the number keypad is dead, generally its a mess.

After a good amount of digging, this seems to fix it, once you run the command, kill the session, and start a new one.

sudo chsh -s /bin/bash

I picked this up from askubuntu:

https://askubuntu.com/questions/325807/arrow-keys-home-end-tab-complete-keys-not-working-in-shell

Well that probably explains it, I had been playing around far too much with /bin/sh.

Hack The Box – NodeBlog – Walkthrough

Posted on January 29, 2022January 29, 2022 by admin

This is one of the retired boxes on HTB, lets spawn an instance and dive in.

First add the IP to the host file.

nano /etc/hosts

So I started with a basic nmap scan, but pinging the machine appears to be blocked.

Lets add the -Pn and force it to go again.

nmap -sC -sV -v -Pn nodeblog.htb

Hack the Box – Antique – Walkthrough

Posted on January 26, 2022January 27, 2022 by admin

So this is one of the easy rated boxes from HTB, lets dive in and add the IP to the /etc/hosts file:

sudo nano /etc/hosts

Now a good nmap scan for a start:

nmap -sC -sV -sT -p- -v antiquehtb

and while that runs lets do a UDP in the background for good measure.

sudo nmap -sC -sV -sT -sU -v antique.htb

This will take a looooooong time, so we’ll come back to it later.

The nmap shows us some interesting things, the name “HP Jetdirect” comes up alot, the telnet port is also pretty interesting.

That would mean we have a printer, but theres no IPP port open.

Lets check searchsploit for JetDirect:

A few good finds, but I like the look of SNMP password disclosure, SNMP is usually pretty open. Lets search on exploit-db.

Okay lets have a play.

First lets do a walk while nmap is still being slow.

snmpwalk -v 2c -c public antique.htb

Well that was disappointing, but it is listening

Can we run the exploit?

Ergh that would be a no.

I did try and find out how to install snmputil, but it didn’t show on apt, and nor did net-snmp or net-snmp-util.

Maybe we can help along the snmpwalk command..

Okay that’s better.

I think that’s Hex coded, lets take a look:

Nice looking password we seem to have sat there, only one place I can think of for that.

Although this is not the nicest of shells..

Actually hang on lets read that again, we can use the “exec command” to send system commands.

So what does id give us?

exec id

Okay that’s better, any cheeky flag for us?

Yes that is a cheeky flag!

so we can use the cat command and id, can we use python?

I think that is a kind of?

python3?

So this hung on me, but we must have it something.

Lets try some more examples.

Kali- Quick Deploy “SuperCharger” Script

Posted on January 21, 2022January 22, 2022 by admin

This page contains a script to fix a number of issues in the current version, and also to deploy some additional tools into a new instance in an automated fashion.

apt-get update
apt-get upgrade -y

#Fix issue in the the Harveter
pip3 install aiohttp --upgrade

#getpspy scripts
mkdir ~/pspy
cd ~/pspy
wget https://github.com/DominicBreuker/pspy/releases/download/v1.2.0/pspy32
wget https://github.com/DominicBreuker/pspy/releases/download/v1.2.0/pspy64