Link-https://app.hackthebox.com/machines/Lame

Enumeration

I started with nmap scan using -A and -T4

From previous experience I know that vsftpd v.2.3.4 is vulnerable so doing some research I found a metasploit module that we can use to exploit it. However after testing the module a bit we will find that it has been patched so now its time to move onto the samba on port 445. It appears that metasploit has a exploit for this too so if we do :

“use exploit/multi/samba/usermap_script” then we can check if its exploitable.

Getting a shell

Using this I was able to get a command shell so I backgrounded it to turn it into a meterpreter shell however this is not necessary!

From here if we do ID or GETUID you will see that we are root and can read the user.txt found in /home/makis and then root.txt in /root.

This box is very simple however I think its the best box for anyone who wants to get started!