Description: This VM tells us that there are a couple of lovers namely Alice and Bob, where the couple was originally very romantic, but since Alice worked at a private company, "Ceban Corp", something has changed from Alice's attitude towards Bob like something is "hidden", And Bob asks for your help to get what Alice is hiding and get full access to the company!
Learning: Web Application | Simple Privilege Escalation
安装好靶场镜像,打开就这样
在kali 查自己ip
用 nmap扫描 ,看有没有其他段 ,顺利找到靶场ip
然后访问靶场ip ,查看源码
源码提示,用X-Forwarded-For 修改成 本地ip ,直接用插件改了
顺利进入网站
进入注册页面,成功注册,然后进行登录
登录进来,观察到这里可以修改 user_id的号, 修改试试
试出来5时候,名字是alice ,正是本题女主的名字
F12成功看到密码
用ssh 命令 进行远程登录
格式如下,密码输入以上密码就可,然后成功连接,可以操作了
隐藏文件有个 my_secret ,访问进去 继续查看
成功看到flag1.txt ,获得第一个flag
这题还需要提权,查看alice的权限 ,需要用php 提权
sudo php -r 'system("/bin/bash");' 
权限 升为 root ,直接find flag文件啦
