Penetration Testing For Beginners | Basic pentesting 1 Vulnhub Walkthrough CTF

📄 Cyber Security Certification Notes & Cheat Sheets https://buymeacoffee.com/notescatalog/extras 🚀(2nd link) Cyber Security Certification Notes & Cheat Sheets https://shop.motasem-notes.net/collections/cyber-security-study-notes 💡Cyber Security Notes | Membership Access https://buymeacoffee.com/notescatalog/membership 🧩Cybersecurity Direct Coaching & Mentoring https://shop.motasem-notes.net/collections/coaching-and-mentoring-programs 🔥Download FREE Cyber Security 101 Study Notes https://buymeacoffee.com/notescatalog/e/290985 🧠 Get Strategic cyber security and tech insights weekly to your email by joining my newsletter below https://buymeacoffee.com/notescatalog/membership 📊Blog Writeups https://www.motasem-notes.net **** In this video walkthrough, we covered the solution walkthrough of Basic pentesting 1 Vulnhub by introducing the basic steps and methodology involved in a penetration test. ****** Writeup https://motasem-notes.net/penetration-testing-for-beginners-basic-pentesting-1-vulnhub-walkthrough-ctf/ ******** Store https://buymeacoffee.com/notescatalog/extras Patreon https://www.patreon.com/motasemhamdan Instagram https://www.instagram.com/motasem.hamdan.tech/ Google Profile https://maps.app.goo.gl/eLotQQb7Dm6aiL8z6 LinkedIn [1]: https://www.linkedin.com/in/motasem-hamdan-7673289b/ [2]: https://www.linkedin.com/in/motasem-eldad-ha-bb42481b2/ Instagram https://www.instagram.com/mastermindstudynotes/ Twitter https://twitter.com/ManMotasem Facebook https://www.facebook.com/motasemhamdantty/ *** 0:00 - Introduction to Basic Pen Testing 0:15 - Overview of the Target Machine 0:41 - Scanning the Machine with Nmap 1:56 - Adding Host Entry for Webpage Access 2:22 - Using Nikto to Scan for Vulnerabilities 2:36 - Discovering the Secret Directory and WordPress Installation 3:04 - Running WPScan for WordPress Enumeration 3:46 - Attempting Default Credentials for WordPress Login 5:11 - Resolving WPScan Errors and Using a Proxy 7:44 - Brute-Forcing WordPress Login 8:21 - Accessing the Admin Panel with Default Credentials 9:20 - Uploading a Reverse Shell via Metasploit 10:15 - Escalating Privileges with Unix Privilege Escalation 12:08 - Downloading and Running Unix Privilege Escalation Tool 14:17 - Searching for Privilege Escalation Exploits 16:53 - Exploiting SSH for Privilege Escalation 18:26 - Overwriting the Password File for Root Access 22:00 - Verifying Root Access via SSH 23:29 - Exploring Other Methods to Gain Root Access 26:07 - Uploading the Modified Password File 30:07 - Running the OpenSSL Command for Root Password Creation 31:14 - Achieving Root Access with Custom Credentials 32:26 - Searching for Exploits for FTP and SSH Services 35:58 - Attempting to Restart the Target Machine 38:07 - Encountering Issues with Machine Restart 41:37 - Conclusion and Final Thoughts on Privilege Escalation Methods