Hacking Deathnote — Writeup VulnHub
A quick win machine for warmup, without ado, let’s dive in!!
So I initially scanned for services and open ports that might help to enumerate the target
As port 80 was open, so I started fuzzing the website and found usernames like kira and l.Besides that, there’s was a directory called important.jpg and was initially not able to show up, then curl came into effect. Burp can also do the same, but I’ll prefer curl ;-)
During enumeration I found the file notes.txt which was initially a hint in cover page.
It’s a wordlist awesome!!!!, so tried to brute force the ssh login with this wordlist and got a successful login
user.txt contains text encrypted with brainfuck. During enumeration there’s directory called fake-notebook-rule with a hint.After following the rules, the decoding throws the password for kira, AWESOME!!!!
Checking for permission, allows all!!, that was a very quick move to get a root shell!!
That’s all for now,
Until Next Time,
— — — — — — — — — — — — — — —