IP [hostname].jex

0c895516e3d2486589e141106e918903.md000644 0000001435 13711251247012113 0ustar00000000 000000 Host Information (Post-Exploit Local Enum)

**Operating System:**

**Architecture:**

**Domain:**

**Users & Groups:**

**Installed Updates:**

***

See also: [Host Information (Pre-Exploit)](:/821c633f37534051babed2b4a8f6d217)

id: 0c895516e3d2486589e141106e918903
parent_id: a4b2704674904dc3b903d8255b30b78b
created_time: 2020-08-01T01:30:29.341Z
updated_time: 2020-08-01T01:43:13.715Z
is_conflict: 0
latitude: 0.00000000
longitude: 0.00000000
altitude: 0.0000
author: 
source_url: 
is_todo: 0
todo_due: 0
todo_completed: 0
source: joplin-desktop
source_application: net.cozic.joplin-desktop
application_data: 
order: 0
user_created_time: 2020-08-01T01:30:29.341Z
user_updated_time: 2020-08-01T01:43:13.715Z
encryption_cipher_text: 
encryption_applied: 0
markup_language: 1
is_shared: 0
type_: 111dbf360c8684843bee0d0eff209829f.md000644 0000001136 13711251247012621 0ustar00000000 000000 Running Processes

**Process List:**

id: 11dbf360c8684843bee0d0eff209829f
parent_id: a4b2704674904dc3b903d8255b30b78b
created_time: 2020-08-01T01:19:47.831Z
updated_time: 2020-08-01T01:20:05.767Z
is_conflict: 0
latitude: 0.00000000
longitude: 0.00000000
altitude: 0.0000
author: 
source_url: 
is_todo: 0
todo_due: 0
todo_completed: 0
source: joplin-desktop
source_application: net.cozic.joplin-desktop
application_data: 
order: 0
user_created_time: 2020-08-01T01:19:47.831Z
user_updated_time: 2020-08-01T01:20:05.767Z
encryption_cipher_text: 
encryption_applied: 0
markup_language: 1
is_shared: 0
type_: 111e51517c41c4bc1a7dc398dad75f8cf.md000644 0000001075 13711251247012751 0ustar00000000 000000 139

id: 11e51517c41c4bc1a7dc398dad75f8cf
parent_id: 77d4003a8fc84c4cb083dc9a7d8e0b78
created_time: 2020-08-01T00:02:45.204Z
updated_time: 2020-08-01T01:55:30.435Z
is_conflict: 0
latitude: 0.00000000
longitude: 0.00000000
altitude: 0.0000
author: 
source_url: 
is_todo: 1
todo_due: 0
todo_completed: 0
source: joplin-desktop
source_application: net.cozic.joplin-desktop
application_data: 
order: 0
user_created_time: 2020-08-01T00:02:45.204Z
user_updated_time: 2020-08-01T01:55:30.435Z
encryption_cipher_text: 
encryption_applied: 0
markup_language: 1
is_shared: 0
type_: 113be4938ef354b4f82a955b5f751a88d.md000644 0000000452 13711251247012554 0ustar00000000 000000 IP [hostname]

id: 13be4938ef354b4f82a955b5f751a88d
created_time: 2020-07-31T23:54:54.794Z
updated_time: 2020-08-01T11:31:20.399Z
user_created_time: 2020-07-31T23:54:54.794Z
user_updated_time: 2020-07-31T23:54:54.794Z
encryption_cipher_text: 
encryption_applied: 0
parent_id: 
is_shared: 0
type_: 233f2bca05abe4b9988b8396502df7f93.md000644 0000001105 13711251247012624 0ustar00000000 000000 Credentials

id: 33f2bca05abe4b9988b8396502df7f93
parent_id: 868cd31d84a1407dbea572cd5a61ac2b
created_time: 2020-08-01T01:58:45.165Z
updated_time: 2020-08-01T01:58:51.244Z
is_conflict: 0
latitude: 0.00000000
longitude: 0.00000000
altitude: 0.0000
author: 
source_url: 
is_todo: 0
todo_due: 0
todo_completed: 0
source: joplin-desktop
source_application: net.cozic.joplin-desktop
application_data: 
order: 0
user_created_time: 2020-08-01T01:58:45.165Z
user_updated_time: 2020-08-01T01:58:51.244Z
encryption_cipher_text: 
encryption_applied: 0
markup_language: 1
is_shared: 0
type_: 134d7a2d621fb4b91bf3497c02fce5f04.md000644 0000001460 13711251247012664 0ustar00000000 000000 Attack surface questions


- What are our vulnerable services?

- What seems most likely or most straightforward to leverage and why?

- What does this service give us access to?

- Do we have all the correct files / versions / access to exploit?

id: 34d7a2d621fb4b91bf3497c02fce5f04
parent_id: 7fbb0ce03a4d499fa21108e7c6243e2e
created_time: 2020-08-01T01:26:36.902Z
updated_time: 2020-08-01T02:21:34.396Z
is_conflict: 0
latitude: 0.00000000
longitude: 0.00000000
altitude: 0.0000
author: 
source_url: 
is_todo: 0
todo_due: 0
todo_completed: 0
source: joplin-desktop
source_application: net.cozic.joplin-desktop
application_data: 
order: 0
user_created_time: 2020-08-01T01:26:36.902Z
user_updated_time: 2020-08-01T02:21:34.396Z
encryption_cipher_text: 
encryption_applied: 0
markup_language: 1
is_shared: 0
type_: 139562a127a164d34add283f47939d685.md000644 0000001075 13711251247012331 0ustar00000000 000000 445

id: 39562a127a164d34add283f47939d685
parent_id: 77d4003a8fc84c4cb083dc9a7d8e0b78
created_time: 2020-08-01T00:03:35.376Z
updated_time: 2020-08-01T00:03:38.229Z
is_conflict: 0
latitude: 0.00000000
longitude: 0.00000000
altitude: 0.0000
author: 
source_url: 
is_todo: 1
todo_due: 0
todo_completed: 0
source: joplin-desktop
source_application: net.cozic.joplin-desktop
application_data: 
order: 0
user_created_time: 2020-08-01T00:03:35.376Z
user_updated_time: 2020-08-01T00:03:38.229Z
encryption_cipher_text: 
encryption_applied: 0
markup_language: 1
is_shared: 0
type_: 141fe390a9c0a438799a8a93ebdec7339.md000644 0000002134 13711251247012631 0ustar00000000 000000 Exploitation

**Service Exploited:**

**Vulnerability Type:**

**Exploit POC:**

**Description:**

**Discovery of Vulnerability:**

**Exploit Code:**

If wasn't modified, paste link:

If was modified, provide the code: 

```
<code>
```
**Flag:**

- [ ] Shell is interactive
- [ ] Machine IP is visible
- [ ] Absolute path to the flag file is visible
- [ ] Flag is visible
- [ ] Screenshot
- [ ] Submit low-priv flag to the control panel
- [ ] Paste low-priv flag here:

***

See also: [Privilege Escalation](:/e95b45481a9447d3bec4043f27f8c2e6)




id: 41fe390a9c0a438799a8a93ebdec7339
parent_id: f018ed5a45534ca488b0451e963dfc2a
created_time: 2020-08-01T01:49:11.695Z
updated_time: 2020-08-01T02:20:09.778Z
is_conflict: 0
latitude: 0.00000000
longitude: 0.00000000
altitude: 0.0000
author: 
source_url: 
is_todo: 0
todo_due: 0
todo_completed: 0
source: joplin-desktop
source_application: net.cozic.joplin-desktop
application_data: 
order: 0
user_created_time: 2020-08-01T01:49:11.695Z
user_updated_time: 2020-08-01T02:20:09.778Z
encryption_cipher_text: 
encryption_applied: 0
markup_language: 1
is_shared: 0
type_: 1575f83b958ea45fab4cc7faa39350b9f.md000644 0000001261 13711251247012770 0ustar00000000 000000 http(s) port

- [ ] WhatWeb
- [ ] Check source code
- [ ] gobuster
- [ ] nikto
- [ ] CMS scanner
- [ ] WebDAV
- [ ] ZAP

id: 575f83b958ea45fab4cc7faa39350b9f
parent_id: 89ffe79eefb74c07a57629cb6627c79f
created_time: 2020-08-01T00:01:14.114Z
updated_time: 2020-08-01T02:23:15.229Z
is_conflict: 0
latitude: 0.00000000
longitude: 0.00000000
altitude: 0.0000
author: 
source_url: 
is_todo: 1
todo_due: 0
todo_completed: 0
source: joplin-desktop
source_application: net.cozic.joplin-desktop
application_data: 
order: 0
user_created_time: 2020-08-01T00:01:14.114Z
user_updated_time: 2020-08-01T02:23:15.229Z
encryption_cipher_text: 
encryption_applied: 0
markup_language: 1
is_shared: 0
type_: 16493ec4250c5400795880d2c7a7e3a26.md000644 0000001126 13711251247012313 0ustar00000000 000000 21

- [ ] Anonymous access?


id: 6493ec4250c5400795880d2c7a7e3a26
parent_id: 89ffe79eefb74c07a57629cb6627c79f
created_time: 2020-08-01T00:00:59.453Z
updated_time: 2020-08-01T00:08:15.734Z
is_conflict: 0
latitude: 0.00000000
longitude: 0.00000000
altitude: 0.0000
author: 
source_url: 
is_todo: 1
todo_due: 0
todo_completed: 0
source: joplin-desktop
source_application: net.cozic.joplin-desktop
application_data: 
order: 0
user_created_time: 2020-08-01T00:00:59.453Z
user_updated_time: 2020-08-01T00:08:15.734Z
encryption_cipher_text: 
encryption_applied: 0
markup_language: 1
is_shared: 0
type_: 1702c120bf24e4c238949327319bd1b20.md000644 0000001200 13711251247012261 0ustar00000000 000000 File System

**Writeable Files/Directories:**

**Directory List:**





id: 702c120bf24e4c238949327319bd1b20
parent_id: a4b2704674904dc3b903d8255b30b78b
created_time: 2020-08-01T01:16:58.976Z
updated_time: 2020-08-01T01:59:56.949Z
is_conflict: 0
latitude: 0.00000000
longitude: 0.00000000
altitude: 0.0000
author: 
source_url: 
is_todo: 0
todo_due: 0
todo_completed: 0
source: joplin-desktop
source_application: net.cozic.joplin-desktop
application_data: 
order: 0
user_created_time: 2020-08-01T01:16:58.976Z
user_updated_time: 2020-08-01T01:59:56.949Z
encryption_cipher_text: 
encryption_applied: 0
markup_language: 1
is_shared: 0
type_: 1748d02509b1b4b43b89e25c8f72f5972.md000644 0000001135 13711251247012407 0ustar00000000 000000 Scheduled jobs

**Sheduled Tasks:**

id: 748d02509b1b4b43b89e25c8f72f5972
parent_id: a4b2704674904dc3b903d8255b30b78b
created_time: 2020-08-01T01:46:10.547Z
updated_time: 2020-08-01T01:53:50.234Z
is_conflict: 0
latitude: 0.00000000
longitude: 0.00000000
altitude: 0.0000
author: 
source_url: 
is_todo: 0
todo_due: 0
todo_completed: 0
source: joplin-desktop
source_application: net.cozic.joplin-desktop
application_data: 
order: 0
user_created_time: 2020-08-01T01:46:10.547Z
user_updated_time: 2020-08-01T01:53:50.234Z
encryption_cipher_text: 
encryption_applied: 0
markup_language: 1
is_shared: 0
type_: 177d4003a8fc84c4cb083dc9a7d8e0b78.md000644 0000000500 13711251247012673 0ustar00000000 000000 UDP

id: 77d4003a8fc84c4cb083dc9a7d8e0b78
created_time: 2020-08-01T00:00:28.634Z
updated_time: 2020-08-01T00:00:31.742Z
user_created_time: 2020-08-01T00:00:28.634Z
user_updated_time: 2020-08-01T00:00:28.634Z
encryption_cipher_text: 
encryption_applied: 0
parent_id: 7fbb0ce03a4d499fa21108e7c6243e2e
is_shared: 0
type_: 27a08a3139972423885560f06a8ef6353.md000644 0000000524 13711251247012166 0ustar00000000 000000 4. Privilege Escalation

id: 7a08a3139972423885560f06a8ef6353
created_time: 2020-08-01T01:47:49.811Z
updated_time: 2020-08-01T02:04:10.824Z
user_created_time: 2020-08-01T01:47:49.811Z
user_updated_time: 2020-08-01T02:04:10.824Z
encryption_cipher_text: 
encryption_applied: 0
parent_id: 13be4938ef354b4f82a955b5f751a88d
is_shared: 0
type_: 27fbb0ce03a4d499fa21108e7c6243e2e.md000644 0000000513 13711251247012657 0ustar00000000 000000 1. Enumeration

id: 7fbb0ce03a4d499fa21108e7c6243e2e
created_time: 2020-07-31T23:58:12.285Z
updated_time: 2020-08-01T02:03:46.969Z
user_created_time: 2020-07-31T23:58:12.285Z
user_updated_time: 2020-08-01T02:03:46.969Z
encryption_cipher_text: 
encryption_applied: 0
parent_id: 13be4938ef354b4f82a955b5f751a88d
is_shared: 0
type_: 2821c633f37534051babed2b4a8f6d217.md000644 0000001435 13711251247012520 0ustar00000000 000000 Host Information (Pre-Exploit)

**Operating System:**

**Architecture:**

**Domain:**

**Users & Groups:**

**Installed Updates:**

***

See also: [Host Information (Post-Exploit Local Enum)](:/0c895516e3d2486589e141106e918903)

id: 821c633f37534051babed2b4a8f6d217
parent_id: 937cdd78c9da4953910fbcb9a1e21cfa
created_time: 2020-08-01T01:13:02.314Z
updated_time: 2020-08-01T01:43:26.025Z
is_conflict: 0
latitude: 0.00000000
longitude: 0.00000000
altitude: 0.0000
author: 
source_url: 
is_todo: 0
todo_due: 0
todo_completed: 0
source: joplin-desktop
source_application: net.cozic.joplin-desktop
application_data: 
order: 0
user_created_time: 2020-08-01T01:13:02.314Z
user_updated_time: 2020-08-01T01:43:26.025Z
encryption_cipher_text: 
encryption_applied: 0
markup_language: 1
is_shared: 0
type_: 1868cd31d84a1407dbea572cd5a61ac2b.md000644 0000000501 13711251247012730 0ustar00000000 000000 Loot

id: 868cd31d84a1407dbea572cd5a61ac2b
created_time: 2020-08-01T01:58:19.673Z
updated_time: 2020-08-01T02:03:23.904Z
user_created_time: 2020-08-01T01:58:19.673Z
user_updated_time: 2020-08-01T02:03:23.904Z
encryption_cipher_text: 
encryption_applied: 0
parent_id: 13be4938ef354b4f82a955b5f751a88d
is_shared: 0
type_: 289ffe79eefb74c07a57629cb6627c79f.md000644 0000000500 13711251247012735 0ustar00000000 000000 TCP

id: 89ffe79eefb74c07a57629cb6627c79f
created_time: 2020-08-01T00:00:18.243Z
updated_time: 2020-08-01T00:00:20.784Z
user_created_time: 2020-08-01T00:00:18.243Z
user_updated_time: 2020-08-01T00:00:18.243Z
encryption_cipher_text: 
encryption_applied: 0
parent_id: 7fbb0ce03a4d499fa21108e7c6243e2e
is_shared: 0
type_: 28e8dd10ed0f941bfb9d5952f60a8ad6f.md000644 0000001105 13711251247013042 0ustar00000000 000000 Nmap output

id: 8e8dd10ed0f941bfb9d5952f60a8ad6f
parent_id: 77d4003a8fc84c4cb083dc9a7d8e0b78
created_time: 2020-08-01T00:03:42.183Z
updated_time: 2020-08-01T00:03:49.104Z
is_conflict: 0
latitude: 0.00000000
longitude: 0.00000000
altitude: 0.0000
author: 
source_url: 
is_todo: 0
todo_due: 0
todo_completed: 0
source: joplin-desktop
source_application: net.cozic.joplin-desktop
application_data: 
order: 0
user_created_time: 2020-08-01T00:03:42.183Z
user_updated_time: 2020-08-01T00:03:49.104Z
encryption_cipher_text: 
encryption_applied: 0
markup_language: 1
is_shared: 0
type_: 19042ab6559714de3995bef73afd96a41.md000644 0000001221 13711251247012545 0ustar00000000 000000 Network

**ipconfig/ifconfig:**

**Network Processes:**

**ARP:**

**DNS:**

**Route:**

id: 9042ab6559714de3995bef73afd96a41
parent_id: a4b2704674904dc3b903d8255b30b78b
created_time: 2020-08-01T01:44:35.541Z
updated_time: 2020-08-01T02:00:03.825Z
is_conflict: 0
latitude: 0.00000000
longitude: 0.00000000
altitude: 0.0000
author: 
source_url: 
is_todo: 0
todo_due: 0
todo_completed: 0
source: joplin-desktop
source_application: net.cozic.joplin-desktop
application_data: 
order: 0
user_created_time: 2020-08-01T01:44:35.541Z
user_updated_time: 2020-08-01T02:00:03.825Z
encryption_cipher_text: 
encryption_applied: 0
markup_language: 1
is_shared: 0
type_: 1937cdd78c9da4953910fbcb9a1e21cfa.md000644 0000000515 13711251247013040 0ustar00000000 000000 Host Information

id: 937cdd78c9da4953910fbcb9a1e21cfa
created_time: 2020-08-01T01:13:59.309Z
updated_time: 2020-08-01T01:14:13.815Z
user_created_time: 2020-08-01T01:13:59.309Z
user_updated_time: 2020-08-01T01:13:59.309Z
encryption_cipher_text: 
encryption_applied: 0
parent_id: 7fbb0ce03a4d499fa21108e7c6243e2e
is_shared: 0
type_: 2944da959be4740e0b379f3bd08a63304.md000644 0000001252 13711251247012455 0ustar00000000 000000 Local Enum Script Output

- [ ] Did you run the script with thorough option?

**Script Output:**

```
<code>
```

id: 944da959be4740e0b379f3bd08a63304
parent_id: a4b2704674904dc3b903d8255b30b78b
created_time: 2020-08-01T00:34:49.174Z
updated_time: 2020-08-01T01:53:27.638Z
is_conflict: 0
latitude: 0.00000000
longitude: 0.00000000
altitude: 0.0000
author: 
source_url: 
is_todo: 0
todo_due: 0
todo_completed: 0
source: joplin-desktop
source_application: net.cozic.joplin-desktop
application_data: 
order: 0
user_created_time: 2020-08-01T00:34:49.174Z
user_updated_time: 2020-08-01T01:53:27.638Z
encryption_cipher_text: 
encryption_applied: 0
markup_language: 1
is_shared: 0
type_: 1958ba25d36b24afe9ca0149abc242bbe.md000644 0000001155 13711251247013015 0ustar00000000 000000 Installed Applications

**Installed Applications:**

id: 958ba25d36b24afe9ca0149abc242bbe
parent_id: a4b2704674904dc3b903d8255b30b78b
created_time: 2020-08-01T01:43:55.590Z
updated_time: 2020-08-01T01:54:18.768Z
is_conflict: 0
latitude: 0.00000000
longitude: 0.00000000
altitude: 0.0000
author: 
source_url: 
is_todo: 0
todo_due: 0
todo_completed: 0
source: joplin-desktop
source_application: net.cozic.joplin-desktop
application_data: 
order: 0
user_created_time: 2020-08-01T01:43:55.590Z
user_updated_time: 2020-08-01T01:54:18.768Z
encryption_cipher_text: 
encryption_applied: 0
markup_language: 1
is_shared: 0
type_: 19c348e407f3740fdbe3c7c9d4f8c2456.md000644 0000001332 13711251247012632 0ustar00000000 000000 Flags

See the last step in the following notes:

[Exploitation](:/41fe390a9c0a438799a8a93ebdec7339) 
[Privilege Escalation](:/e95b45481a9447d3bec4043f27f8c2e6)

id: 9c348e407f3740fdbe3c7c9d4f8c2456
parent_id: 868cd31d84a1407dbea572cd5a61ac2b
created_time: 2020-08-01T02:05:16.527Z
updated_time: 2020-08-01T02:40:12.283Z
is_conflict: 0
latitude: 0.00000000
longitude: 0.00000000
altitude: 0.0000
author: 
source_url: 
is_todo: 0
todo_due: 0
todo_completed: 0
source: joplin-desktop
source_application: net.cozic.joplin-desktop
application_data: 
order: 0
user_created_time: 2020-08-01T02:05:16.527Z
user_updated_time: 2020-08-01T02:40:12.283Z
encryption_cipher_text: 
encryption_applied: 0
markup_language: 1
is_shared: 0
type_: 1a4b2704674904dc3b903d8255b30b78b.md000644 0000000521 13711251247012360 0ustar00000000 000000 3. Post Exploitation

id: a4b2704674904dc3b903d8255b30b78b
created_time: 2020-08-01T00:34:36.414Z
updated_time: 2020-08-01T02:04:04.321Z
user_created_time: 2020-08-01T00:34:36.414Z
user_updated_time: 2020-08-01T02:04:04.321Z
encryption_cipher_text: 
encryption_applied: 0
parent_id: 13be4938ef354b4f82a955b5f751a88d
is_shared: 0
type_: 2a8f69f4cfd1d4322804d88f8fe7c6574.md000644 0000001100 13711251247012636 0ustar00000000 000000 Hashes

id: a8f69f4cfd1d4322804d88f8fe7c6574
parent_id: 868cd31d84a1407dbea572cd5a61ac2b
created_time: 2020-08-01T01:58:32.342Z
updated_time: 2020-08-01T01:58:36.383Z
is_conflict: 0
latitude: 0.00000000
longitude: 0.00000000
altitude: 0.0000
author: 
source_url: 
is_todo: 0
todo_due: 0
todo_completed: 0
source: joplin-desktop
source_application: net.cozic.joplin-desktop
application_data: 
order: 0
user_created_time: 2020-08-01T01:58:32.342Z
user_updated_time: 2020-08-01T01:58:36.383Z
encryption_cipher_text: 
encryption_applied: 0
markup_language: 1
is_shared: 0
type_: 1b0f8c29102384ffc99c78b4d835e66e1.md000644 0000001077 13711251247012561 0ustar00000000 000000 Other

id: b0f8c29102384ffc99c78b4d835e66e1
parent_id: 868cd31d84a1407dbea572cd5a61ac2b
created_time: 2020-08-01T01:59:09.583Z
updated_time: 2020-08-01T01:59:13.197Z
is_conflict: 0
latitude: 0.00000000
longitude: 0.00000000
altitude: 0.0000
author: 
source_url: 
is_todo: 0
todo_due: 0
todo_completed: 0
source: joplin-desktop
source_application: net.cozic.joplin-desktop
application_data: 
order: 0
user_created_time: 2020-08-01T01:59:09.583Z
user_updated_time: 2020-08-01T01:59:13.197Z
encryption_cipher_text: 
encryption_applied: 0
markup_language: 1
is_shared: 0
type_: 1de103dda13f840bf91d197c383f6be39.md000644 0000001105 13711251247012670 0ustar00000000 000000 Nmap output

id: de103dda13f840bf91d197c383f6be39
parent_id: 89ffe79eefb74c07a57629cb6627c79f
created_time: 2020-08-01T00:02:05.844Z
updated_time: 2020-08-01T00:02:13.753Z
is_conflict: 0
latitude: 0.00000000
longitude: 0.00000000
altitude: 0.0000
author: 
source_url: 
is_todo: 0
todo_due: 0
todo_completed: 0
source: joplin-desktop
source_application: net.cozic.joplin-desktop
application_data: 
order: 0
user_created_time: 2020-08-01T00:02:05.844Z
user_updated_time: 2020-08-01T00:02:13.753Z
encryption_cipher_text: 
encryption_applied: 0
markup_language: 1
is_shared: 0
type_: 1de39a7f2b7114dc4903e762a205817d3.md000644 0000003466 13711251247012457 0ustar00000000 000000 Stuck? Things to consider

- [ ] Do you need a break?
- [ ] Have you confirmed the service on the port manually and googled all the things (the SSH string, the banner text, the source)?
- [ ] Is there a service that will allow you to enumerate something useful (i.e. usernames) but maybe doesn't make that obvious (e.g. RID brute-force through SMB with crackmapexec or lookupsid.py)?
- [ ] Have you used the best wordlist possible for your tasks (is there a better/bigger directory list? Is there a SecLists cred list for this service?)
- [ ] Have you fuzzed the directories you have found for a) more directories, or b) common filetypes -x php,pl,sh,etc
- [ ] Have you tried some manual testing (MySQL, Wireshark inspections)
- [ ] Have you collected all the hashes and cracked them?
- [ ] Have you tried ALL COMBINATIONS of the username/passwords and not just the pairs given? Have you tried them across all services/apps?
- [ ] Do the version numbers tell you anything about the host?
- [ ] Have you tried bruteforce (cewl, patator)?
- [ ] Can you think of a way to find more information: More credentials, more URLs, more files, more ports, more access?
- [ ] Do you need to relax some of the terms used for searching? Instead of v2.8 maybe we check for anything under 3.


id: de39a7f2b7114dc4903e762a205817d3
parent_id: 7fbb0ce03a4d499fa21108e7c6243e2e
created_time: 2020-08-01T01:23:41.134Z
updated_time: 2020-08-01T01:59:39.314Z
is_conflict: 0
latitude: 0.00000000
longitude: 0.00000000
altitude: 0.0000
author: 
source_url: 
is_todo: 0
todo_due: 0
todo_completed: 0
source: joplin-desktop
source_application: net.cozic.joplin-desktop
application_data: 
order: 0
user_created_time: 2020-08-01T01:23:41.134Z
user_updated_time: 2020-08-01T01:59:39.314Z
encryption_cipher_text: 
encryption_applied: 0
markup_language: 1
is_shared: 0
type_: 1e95b45481a9447d3bec4043f27f8c2e6.md000644 0000002145 13711251247012547 0ustar00000000 000000 Privilege Escalation

**Service Exploited:**

**Vulnerability Type:**

**Exploit POC:**

**Description:**

**Discovery of Vulnerability:**

**Exploit Code:**

If wasn't modified, paste link:

If was modified, provide the code: 

```
<code>
```
**Flag:**

- [ ] Shell is interactive
- [ ] Machine IP is visible
- [ ] Absolute path to the flag file is visible
- [ ] Flag is visible
- [ ] Screenshot
- [ ] Submit flag to the control panel
- [ ] Paste root / Adminstrator / SYSTEM flag here:

***

See also: [Exploitation](:/41fe390a9c0a438799a8a93ebdec7339)


id: e95b45481a9447d3bec4043f27f8c2e6
parent_id: 7a08a3139972423885560f06a8ef6353
created_time: 2020-08-01T00:13:01.564Z
updated_time: 2020-08-01T02:20:26.026Z
is_conflict: 0
latitude: 0.00000000
longitude: 0.00000000
altitude: 0.0000
author: 
source_url: 
is_todo: 0
todo_due: 0
todo_completed: 0
source: joplin-desktop
source_application: net.cozic.joplin-desktop
application_data: 
order: 0
user_created_time: 2020-08-01T00:13:01.564Z
user_updated_time: 2020-08-01T02:20:26.026Z
encryption_cipher_text: 
encryption_applied: 0
markup_language: 1
is_shared: 0
type_: 1f018ed5a45534ca488b0451e963dfc2a.md000644 0000000514 13711251247012606 0ustar00000000 000000 2. Exploitation

id: f018ed5a45534ca488b0451e963dfc2a
created_time: 2020-08-01T00:12:52.588Z
updated_time: 2020-08-01T02:03:54.008Z
user_created_time: 2020-08-01T00:12:52.588Z
user_updated_time: 2020-08-01T02:03:54.008Z
encryption_cipher_text: 
encryption_applied: 0
parent_id: 13be4938ef354b4f82a955b5f751a88d
is_shared: 0
type_: 2