Run a nmap scan to find for open ports.
Google the IIS version and the common exploit can be found.
Web server is under construction but uses the IIS framework.
Start up msfconsole to find for exploits.
exploit/windows/local/ms14_070_tcpip_ioctl is a local exploit we can use.
Run the exploit.
Head to the Administrator folder to get the root flag.
Leave a Reply