靶机渗透练习计划
用靶机渗透练习入门渗透,先实践,再了解理论。我这人有一股执着劲,不管什么,都希望先做,不太喜欢听空洞的大道理。一件事的结局好不好,只有做了才知道。就算判断错了,也是自己亲自获取的经验。
- Kioptrix: Level 1 (#1): https://www.vulnhub.com/entry/kioptrix-level-1-1,22/
- Kioptrix: Level 1.1 (#2): https://www.vulnhub.com/entry/kioptrix-level-11-2,23/
- Kioptrix: Level 1.2 (#3): https://www.vulnhub.com/entry/kioptrix-level-12-3,24/
- Kioptrix: Level 1.3 (#4): https://www.vulnhub.com/entry/kioptrix-level-13-4,25
- Kioptrix: 2014: https://www.vulnhub.com/entry/kioptrix-2014-5,62/
- FristiLeaks 1.3: https://www.vulnhub.com/entry/fristileaks-13,133/
- Stapler 1: https://www.vulnhub.com/entry/stapler-1,150/
- VulnOS 2: https://www.vulnhub.com/entry/vulnos-2,147/
- SickOs 1.2: https://www.vulnhub.com/entry/sickos-12,144/
- Brainpan 1: https://www.vulnhub.com/entry/brainpan-1,51/
- HackLAB: Vulnix: https://www.vulnhub.com/entry/hacklab-vulnix,48/
- /dev/random: scream: https://www.vulnhub.com/entry/devrandom-scream,47/
- pWnOS 2.0: https://www.vulnhub.com/entry/pwnos-20-pre-release,34/
- SkyTower 1: https://www.vulnhub.com/entry/skytower-1,96/
- Mr-Robot 1: https://www.vulnhub.com/entry/mr-robot-1,151/
- PwnLab: https://www.vulnhub.com/entry/pwnlab-init,158/
- Metasploitable 3: https://github.com/rapid7/metasploitable3
- Lin.Security: https://www.vulnhub.com/entry/linsecurity-1,244/
- Temple of Doom: https://www.vulnhub.com/entry/temple-of-doom-1,243/
- Pinkys Palace v1: https://www.vulnhub.com/entry/pinkys-palace-v1,225/
- Pinkys Palace v2: https://www.vulnhub.com/entry/pinkys-palace-v2,229/
- Zico2: https://www.vulnhub.com/entry/zico2-1,210/
- Wintermute: https://www.vulnhub.com/entry/wintermute-1,239/
- Lord of the root 1.0.1: https://www.vulnhub.com/entry/lord-of-the-root-101,129/
- Tr0ll 1: https://www.vulnhub.com/entry/tr0ll-1,100/
- Tr0ll 2: https://www.vulnhub.com/entry/tr0ll-2,107/
- Web Developer 1: https://www.vulnhub.com/entry/web-developer-1,288/
- SolidState: https://www.vulnhub.com/entry/solidstate-1,261/
- Hackme 1: https://www.vulnhub.com/entry/hackme-1,330/
- Escalate_Linux: 1: https://www.vulnhub.com/entry/escalate_linux-1,323/
- DC: 6: https://www.vulnhub.com/entry/dc-6,315/
- IMF: https://www.vulnhub.com/entry/imf-1,162/
- Tommy Boy: https://www.vulnhub.com/entry/tommy-boy-1,157/
- Billy Madison: https://www.vulnhub.com/entry/billy-madison-11,161/
- Tr0ll1: https://www.vulnhub.com/entry/tr0ll-1,100/
- Tr0ll2: https://www.vulnhub.com/entry/tr0ll-2,107/
- Wallaby’s Nightmare: https://www.vulnhub.com/entry/wallabys-nightmare-v102,176/
- Moria: https://www.vulnhub.com/entry/moria-1,187/
- BSides Vancouver 2018: https://www.vulnhub.com/entry/bsides-vancouver-2018-workshop,231/
- DEFCON Toronto Galahad: https://www.vulnhub.com/entry/defcon-toronto-galahad,194/
- Spydersec: https://www.vulnhub.com/entry/spydersec-challenge,128/
- Pinkys Palace v3: https://www.vulnhub.com/entry/pinkys-palace-v3,237/
- Pinkys Palace v4: https://www.vulnhub.com/entry/pinkys-palace-v4,265/
- Vulnerable Docker 1: https://www.vulnhub.com/entry/vulnerable-docker-1,208/
- Node 1: https://www.vulnhub.com/entry/node-1,252/
- Troll 3: https://www.vulnhub.com/entry/tr0ll-3,340/
- Readme 1: https://www.vulnhub.com/entry/readme-1,336/
- OZ: https://www.vulnhub.com/entry/oz-1,317/
以上一共是48个靶机。计划每天都要做靶机渗透练习,五一劳动节之前把这些靶机都实验一遍,并做好过程记录。这篇博客常更新,完成一个靶机就更新一次。先把这些练习完了,再做进一步计划,现在的想法是练习了这些vulnhub的靶机之后,练习hackthebox。
以下是推荐的hackthebox练习靶机:
靶机提权
Linux提权
Linux提权指南:
https://blog.g0tmi1k.com/2011/08/basic-linux-privilege-escalation/Linux提权辅助脚本:
https://www.securitysift.com/download/linuxprivchecker.py
https://github.com/HappyTreeFriend/linux-exploit-suggesterLinux Exploits(EXP):
https://github.com/HappyTreeFriend/kernel-exploits
Windows 提权
Windows 提权指南:
http://www.fuzzysecurity.com/tutorials/16.htmlWindows 提权辅助脚本:
https://github.com/pentestmonkey/windows-privesc-checkWindows Exploits :
https://github.com/abatchy17/WindowsExploits
