Ingreslock backdoor vulnerability 04/03 Update SLTechnology News&Howtos

Network Security Internet Technology Development Database Servers Mobile Phone Android Software Apple Software Computer Software News IT Information

Ingreslock backdoor vulnerability

2025-04-03 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Network Security >

Share

Shulou(Shulou.com)06/01 Report--

Use the telnet command to connect port 1524 of the target host and directly obtain root permissions.

The Ingreslock backdoor listens on port 1524, and connects to port 1524 to gain root permissions, which is often used on an exposed server.

First, use nmap tools to scan the target host

1.1 scan the target host using the nmap command. Click in the space on the desktop, right-click the menu and choose Open in Terminal.

1.2 enter the command "nmap-sV 192.168.1.3" in the terminal, scan the port of the target host and find that port 1524 is open.

1.3 enter the command "telnet 192.168.1.3 1524" in the terminal to connect port 1524 of the target host. First, the connection is successful. As shown in figure 3

1.4 enter the command "whoami" in the terminal to find the permissions you have obtained. As shown in figure 4

1.5 enter the command "ifconfig eth0" in the terminal to view the network card information, enter "cat / etc/passwd" under the terminal, and view the password file of the remote host.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

Views: 0

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.

Share To

Weibo

Weibo

Tencent

Tencent

Renren

Renren

QQZone

QQZone

Douban

Douban

More

More

Weibo

Weibo

Tencent

Tencent

Renren

Renren

QQZone

QQZone

Douban

Douban

Yixin

Yixin

Related

Build zoopker+hbase environment

Continue with the installation of the previous hadoop.First, install zookooper1. Decompress zookoope

2023-12-25 21:17:29 shulou Views: 336
Lenovo Rescue Y700 2023 tablet push ZUI 15.0.723 system Grayscale Test: add

CTOnews.com, December 23, ZUI officially announced that the Rescue Y700 2023 tablet will open the ZU

2023-12-25 21:14:50 shulou Views: 351
Cybertruck: future species redefine cars

"Every 5-10 years, there's a rare product, a really special, very unusual product that's the most un

2023-12-25 21:13:36 shulou Views: 361
An example Analysis of the Wechat Web Landing Authorization of the Wechat Public platform of php version

This article mainly shows you the "php version of Wechat public platform Wechat web login authorizat

2023-12-25 20:31:50 shulou Views: 267
What are the relevant knowledge points of PHP class

2023-12-25 20:31:29 shulou Views: 320

Network Security

More Network Security >

Latest Network Security More Network Security >

Latest Internet Technology More Internet Technology >

Latest Development More Development >

Latest Database More Database >

Latest Servers More Servers >

Latest Mobile Phone More Mobile Phone >

Latest Android Software More Android Software >

Latest Apple Software More Apple Software >

Latest Computer Software News More Computer Software News >

Latest IT Information More IT Information >

Wechat

About us Contact us Product review car news thenatureplanet

© 2024 shulou.com SLNews company. All rights reserved.

12

Report