Cheran: 1 Walkthrough

Reasonable Doubt

2020-09-05 (Updated: 2020-09-05)

vulnhub

reference	Cheran: 1
target ip	192.168.1.24

Scan with nmap:

Enumerate Samba with enum4linux:

Enumerate HTTP with gobuster:

Enumerate this page to get the password.

SSH as user Rajasimha:

Escalate from user Rajasimha to user cheran:

Enumerate user’s group:

Privilege escalation via lxd group.

lxd init:

Import the image:

Initialize a new container to mount / to /mnt/root:

/root/root.txt: