Dumping RDCMan Credentials

overview

A Kali GUI machine and a target machine running a vulnerable application are provided to you. The IP address of the target machine is provided in a text file named target placed on the Desktop of the Kali machine (/root/Desktop/target).

Your task is to fingerprint the application using the tools available on the Kali machine and exploit it using the appropriate Metasploit module. Then, discover the RDCManconfig file and decrypt the second target machine credentials.

Objective: Exploit the application and gain the meterpreter session and find the flag.

Instructions:

Your Kali machine has an interface with IP address 10.10.X.Y. Run “ip addr” to know the values of X and Y.
The IP address of the target machine is mentioned in the file “/root/Desktop/target”
Do not attack the gateway located at IP address 192.V.W.1 and 10.10.X.1

solutions

The solution for this lab can be found in the following manual: https://assets.ine.com/labs/ad-manuals/walkthrough-2398.pdf

PreviousWindows: SMB Server CrackMapExec NextWinRM: Evil-WinRM Invoke-PS-Script

Last updated 10 months ago