天融信复现joker靶机

复现joker靶机
会用到的反弹shell的链接http://pentestmonkey.net/cheat-sheet/shells/reverse-shell-cheat-sheet

arp扫描,确定目标主机ip

nmap扫描端口
22、80、8080

扫描敏感路径
http://ip/phpinfo.php
http://ip/css/
http://ip/img/
http://ip/secret.txt

参考链接:

  • lxd容器提权 | lUc1f3r11's blog
    https://fdlucifer.github.io/2020-01-20-Privilege-Escalation-via-lxd

  • 可以用来提权的容器:GitHub - saghul/lxd-alpine-builder: Build Alpine Linux images for LXD
    https://github.com/saghul/lxd-alpine-builder

你可能感兴趣的:(天融信复现joker靶机)