Closed richnadeau closed 2 years ago
Devin wants Mike and I to look into a vulnerability that allows SQL injection and look for another one that has to deal with cockpit. Mike has begun light research on cockpit I believe
Devin is having Mike look into cockpit vulnerabilities, having me look into "pass the hash". Waiting for response from Devin about if he wants two boxes up for pass the hash
There is already a server up on shire.local so we just need to create the box and join it to the domain. Found the documentation on how to set this up just need to test it tomorrow when the group meets.
Next thing I need to do is research how to exploit Windows/use mimikatz on Windows using Kali Linux as I am not familiar with how to do this. Pausing on this for now though so I can help Mike with his Cockpit box since it is the priority.
I need to research and find a vulnerability to install and configure onto a target server. Need to ask Devin what type of vulnerability he wants us to look for.