easy – Trenches of IT

Offensive Security – Proving Grounds – Metallus Write-up – No Metasploit

Posted on December 12, 2020December 12, 2020 by trenchesofit

Offensive security has released an easy box offered in the practice section of the Proving Grounds. This Windows box is named Metallus. Lets see if we can get root on this one. Reconnaissance Starting with some initial enumeration. Nmap scan -Pn to ignore ping check, -sV to check versions, -sC to run all scripts, and …

Offensive Security – Proving Grounds – Internal Write-up – No Metasploit

Posted on November 24, 2020November 24, 2020 by trenchesofit

Internal is a machine available in the Practice area of the Offensive Security Proving Grounds. This machine was super easy, so I will be focusing on manual exploitation and solid enumeration. Reconnaissance Lets start with some basic enumeration. Here we immediately see our target is “Windows Server (R) 2008 Standard 6001 Service Pack 1”. We …