Hello everyone,

It’s been a long! I back this time to write about my experience in eCIR certifications from elearnSecurity.

Exam:

Let’s know about the exam to know how to prepare for it. You will be given two scenarios. The first one is Splunk and the second is Kibana &…

Let’s do Samba Machine in this write up.

As always, started with nmap to figure open ports

nmap -sT -A -p- -T5 10.0.101.2

* 10.0.101.2 is samba IP

we got 21 open and running ProFTPD 1.3.5!

ProFTPD 1.3.5 is vulnerable, it has mod_copy module which allows remote attackers to read…

Level 10

Challenge:

Enter password
Please enter a password to gain access to level 10

Solution:

All what you have to do is that capture the request and you will notice that “authorization = no” change it to “yes” and you will be authorized!

Nouf

PenTester & Challenges Solver

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store