InfoSec LAB

Pandora_SSH

Created: 2 min read

SSH

Testing the credential found from the earlier SNMP enumeration

┌──(kali㉿kali)-[~/archive/htb/labs/pandora]
└─$ ssh daniel@panda.htb  
The authenticity of host 'panda.htb (10.10.11.136)' can't be established.
ed25519 key fingerprint is sha256:yDtxiXxKzUipXy+nLREcsfpv/fRomqveZjm6PXq9+BY.
This key is not known by any other names.
Are you sure you want to continue connecting (yes/no/[fingerprint])? yes
warning: Permanently added 'panda.htb' (ED25519) to the list of known hosts.
daniel@panda.htb's password: 
Welcome to Ubuntu 20.04.3 LTS (GNU/Linux 5.4.0-91-generic x86_64)
 
 * documentation:  https://help.ubuntu.com
 * management:     https://landscape.canonical.com
 * support:        https://ubuntu.com/advantage
 
  system information as of thu 20 apr 08:26:27 UTC 2023
 
  system load:           0.48
  usage of /:            65.1% of 4.87GB
  memory usage:          12%
  swap usage:            0%
  processes:             320
  users logged in:       0
  ipv4 address for eth0: 10.10.11.136
  ipv6 address for eth0: dead:beef::250:56ff:feb9:364
 
  => /boot is using 91.8% of 219MB
 
 
0 updates can be applied immediately.
 
 
The list of available updates is more than a week old.
to check for new updates run: sudo apt update
 
 
The programs included with the Ubuntu system are free software;
the exact distribution terms for each program are described in the
individual files in /usr/share/doc/*/copyright.
 
Ubuntu comes with ABSOLUTELY NO WARRANTY, to the extent permitted by
applicable law.
 
daniel@pandora:~$ whoami
daniel
daniel@pandora:~$ hostname
pandora
daniel@pandora:~$ ifconfig
eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 10.10.11.136  netmask 255.255.254.0  broadcast 10.10.11.255
        inet6 dead:beef::250:56ff:feb9:364  prefixlen 64  scopeid 0x0<global>
        inet6 fe80::250:56ff:feb9:364  prefixlen 64  scopeid 0x20<link>
        ether 00:50:56:b9:03:64  txqueuelen 1000  (Ethernet)
        RX packets 1047456  bytes 157131356 (157.1 MB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 1111578  bytes 954045011 (954.0 MB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
 
lo: flags=73<UP,LOOPBACK,RUNNING>  mtu 65536
        inet 127.0.0.1  netmask 255.0.0.0
        inet6 ::1  prefixlen 128  scopeid 0x10<host>
        loop  txqueuelen 1000  (Local Loopback)
        RX packets 3813  bytes 333700 (333.7 KB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 3813  bytes 333700 (333.7 KB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

It was a valid system credential Initial Foothold established to the target system as the daniel user via SSH

Interactive Graph View

Backlinks