Strange behavior on Lab 24 Linux Exploitation

JasonNguyen · September 3, 2021, 1:09pm

I following the solution of the lab but I stuck at getting credential on ssl-heartbleed CVE
I observe somethings strange, in pic1 the credential that I got was username=tomcatadmin&pw=0x19$2B7!
But in the solution it is username=amanda&pass=m@ndy857# (pic2)
Does anyone know why I got different credential from the solution? Thank you.
By the way pic3 is my metasploit conifg

X0RW3LL · September 8, 2021, 10:55pm

You retrieve the private memory dumps in 64k chunks at a time, which means you can get different login attempts each time you run the exploit.

Topic		Replies	Views
NBT-NS Poisoning and Exploitation with Responder Penetration Testing Professional red , security , lab	1	410	August 19, 2021
Post-Exploitation Lab - Backdoor not working Penetration Testing Professional red , ine , security , lab	2	372	April 27, 2022
C++-assisted exploitation lab - remote desktop credentials incorrect Penetration Testing Student (SP) red , lab	1	368	July 28, 2021
Metasploit lab: “Exploit completed, but no session was created” Penetration Testing Student (SP) red , lab , metasploit , ejpt , pts	8	2434	November 28, 2021
EJPTv2 WinRM username and password are incorrect for completing lab exercise Penetration Testing Student (SP) red , lab	0	204	November 14, 2022

Strange behavior on Lab 24 Linux Exploitation

Related Topics