eCPPTv2-PTP-Notes

Home GitHub Portfolio Twitter/X Medium Cont@ct

📝eCPPTv2 / PTP - Notes
1️⃣1 - System Security
2️⃣2 - Network Security
3️⃣3 - PowerShell for PT
- 3.1 PowerShell
4️⃣4 - Linux Exploitation
5️⃣5 - Web App Security
6️⃣6 - Wi-Fi Security
- 6.1 Traffic Analysis
7️⃣7 - Metasploit & Ruby
- 7.1 Metasploit
📄Report
- How to write a PT Report
🛣️RoadMap & My Experience
📔eCPPT Cheat Sheet

Powered by GitBook

On this page

Linux Exploitation
FTP
SAMBA
SSH
SMTP

4 - Linux Exploitation

4.2 Linux Exploitation

Previous4.1 Linux Vulnerabilities Next4.3 Linux Post-Exploitation

Last updated 1 year ago

Linux Exploitation

FTP

is an Unix FTP server.

vsftpd v.2.3.4 is vulnerable to a command execution vulnerability

🔬

SAMBA

Samba is the Linux implementation of SMB.

Samaba v.3.5.0 is vulnerable to a RCE vulnerability

🔬

SSH

libssh is a C library that implements the SSHv2 protocol

SSH default TCP port is 22
libssh v.0.6.0 - 0.8.0 is vulnerable to an authentication bypass vulnerability

🔬

SMTP

SMTP default TCP port is 25
- other TCP ports are 465 and 587
Haraka prior to v.2.8.9 is vulnerable to command injection

is an open source high performance SMTP server developed in Node.js

🔬

4️⃣

FTP - MSF Exploit

Samba - MSF Exploit

SSH - MSF Exploit

SMTP - MSF Exploit