Drupal
Last updated
Was this helpful?
Last updated
Was this helpful?
Open-source web content management framework written in PHP
Works but too old - last updated like 2013
github/tibillys
Takes a long time to run
http://$IP/robots.txt
CVE-2018-7600
If you get a 'limited shell' you will need to upload nc.exe and do reverse shell
Search and Download the php exploit
ippsec includes Custom phpCode for:
Uploading and Execution
Requires php-curl
Exploit will download json files that could have secrets
Exploit will save json files locally
Check them for details, and session cookies to steal
Create a New Cookie, and you might get Admin
If you can access Drupal:
Enable the PHP Filter
Create an Article that has PHP
Use the ippsec phpCode
Execute commands and upload
systeminfo will tell us the OS version and Patch level
Hotfix 'N/A' might mean we dont have access, or there are no patches
OS/Patch level will help us with KernelExploit
..Find Version