Hey Folks, in this tutorial we are going to talk about an interesting tool that will help us during solve the CTF challenge. Once the target is compromised we can collect data and a lot of information called privilege escalation. But the good thing is that we donβt have to do anything, just execute the command it will get all the information and give it to us.
Lets take a look π !!
In this case we will run this tool with non privileged user as you can see below because as we know that the privilege escalation are used for getting the privileges of accounts.
First we will download it from the github page using the following command. After installed we will going into the directory and give some chmod permission.
git clone https://github.com/mostaphabahadou/postenum.git
cd postenum/
sudo chmod +x postenum.sh
./postenum.shYou can see the features of this tool by execute the above commands.
We check the permission and ownership of file and directory by executing separate-2 command but this feature can give us complete information about the file system such as where the file is kept and what its permission.
./postenum.sh -sYou can see the file read by other users which can be helpful for lfi with log poising attack.
With the help of this command we can check the development tools and languages which are installed and supported.
./postenum.sh -lEven we can also identify the shell escape that is the most useful feature for CTF player.
Linux user knows how to check user and what is permissions but if you have limited time and want to get more details then you can use it.
./postenum.sh -cThis feature provide us the network configuration of the target machine.
./postenum.sh -nIts will provide us the version details of the protocols.
./postenum.sh -vThis feature can be the leader of this tool as it will provide us with OS information and privilege escalation kernel exploits.
./postenum.sh -oA keen learner and passionate IT student. He has done Web designing, CCNA, RedHat, Ethical hacking, Network & web penetration testing. Currently, he is completing his graduation and learning about Red teaming, CTF challenges & Blue teaming.
The gau (Get All URLs) tool is a versatile open-source utility that collects URLs from…
Jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic…
Hey Folks :) !! In this tutorial, we will describe some of the techniques commonly…
Hey Folks :) !! In this article, we present the "Termux Cheat Sheet for Hackers"…
Amid the rapid advancement of technology, the significance of human involvement in cybersecurity frequently goes…
Hey Folks, we are back today after such a long break, but don't worry we…
This website uses cookies.