all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

kioptrix level 2 write up

Add to bookmarks
Nov. 16, 2023, 8:18 a.m. | Pr3ach3r

System Weakness - Medium systemweakness.com

kioptrix level 2

Introduction

This is my second write-up and I’m very happy to share my findings on this machine box. Kioptrix Level 2 is another easy machine on the vulnhub website. By exploiting a SQL injection vulnerability in the login page and a remote code execution vulnerability, we can gain access to the server. Then we get root by using a public Linux kernel exploit. It’s very straightforward, so let’s get started!

Enumeration

First, we need to check for …

ctf-writeup infosec kioptrix pentest vulnhub

Visit resource

More from systemweakness.com / System Weakness - Medium

THM — Fortress 1 day, 16 hours ago | systemweakness.com
hacking penetration testing tryhackme tryhackme-walkthrough +1
Basic Password Checker in Python 2 days, 9 hours ago | systemweakness.com
basic coding cybersecurity demands +16
Bypassing Log.d() for Credential Extraction: A Frida Script Approach 2 days, 9 hours ago | systemweakness.com
android application applications bio +18
Legacy Writeup | SMB Remote Code Execution 2 days, 9 hours ago | systemweakness.com
capture-the-flag ethical hacking hackthebox penetration testing +1
TryHackMe Linux Process Analysis Write-Up 3 days, 16 hours ago | systemweakness.com
cybersecurity linux tryhackme tryhackme-walkthrough +1
Headless WriteUp: Cross-Site Scripting & SetUID privilege escalation 4 days, 8 hours ago | systemweakness.com
ctf ctf-writeup hackthebox hackthebox-writeup +1
WifineticTwo WriteUp | (‘Code Injection’) | HackTheBox [To Be Continue] 4 days, 8 hours ago | systemweakness.com
hackthebox hackthebox-writeup penetration testing security operations +1
Cybersecurity ROI: Quantifying the Value of Protection 6 days, 15 hours ago | systemweakness.com
age attacks breaches business +28
Authentication & How it works ? 6 days, 15 hours ago | systemweakness.com
access control address amp authentication +10

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Senior Security Researcher - Linux MacOS EDR (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel
View on infosec-jobs.com

Sr. Manager, NetSec GTM Programs

@ Palo Alto Networks | Santa Clara, CA, United States
View on infosec-jobs.com

SOC Analyst I

@ Fortress Security Risk Management | Cleveland, OH, United States
View on infosec-jobs.com