Obteniendo contraseñas desde terminal de GRUB

Obteniendo contraseñas desde terminal de GRUB

Por medio de un ataque físico, teniendo acceso al host con GRUB, se puede obtener las claves de un sistema GNU/Linux.

Se inicia el equipo y mostrará el GRUB.

  1. Se preciona la tecla 'C' para inicar una linea de comandos.
  2. Siguiente aparecerá la linea de comandos
  3. Se ejecuta el comando 'ls' para saber que partición o disco es el objetivo y se volca el contenido del los ficheros escribiendo 'cat ([resultado de ls])/etc/shadow'
> ls -l

> cat (hd0,msdos1)/etc/shadow

4.La salida de dicho comando mostraría el contendo del fichero /etc/shadow.

Se podría desplegar otros ficheros como passwd, y jugar con algunas otras cosas. Por el momento es todo espero aportar algo en mi primer post en morioh. En el siguiente vemos como arreglar esto.

Referencia:

Martín, C. Á., & Pérez, P. G. (2013). Hardening de servidores GNU/Linux. 0xWORD Computing.

linux security ubuntu

Bootstrap 5 Complete Course with Examples

Bootstrap 5 Tutorial - Bootstrap 5 Crash Course for Beginners

Nest.JS Tutorial for Beginners

Hello Vue 3: A First Look at Vue 3 and the Composition API

Building a simple Applications with Vue 3

Deno Crash Course: Explore Deno and Create a full REST API with Deno

How to Build a Real-time Chat App with Deno and WebSockets

Convert HTML to Markdown Online

HTML entity encoder decoder Online

10 Best Ubuntu-based Linux Distributions

Ubuntu is arguably one of the most popular and widely-used Linux distribution owing to its classic UI, stability, user-friendliness, and a rich repository that contains over 50,000 software packages. Furthermore, it comes highly recommended for beginners who are trying to give a shot at Linux.

How to Install Microsoft Teams on Ubuntu 20.04

In this tutorial, we will show you how to install Microsoft Teams on Ubuntu 20.04 machine. we can install teams using Debian installer file or by adding microsoft repository.

How to Secure phpMyAdmin Access with Apache on Ubuntu 18.04

How to secure PHPMyAdmin login access in ubuntu apache on aws. Here, we will show you a simple 2 solution to secure PHPMyAdmin login in ubuntu apache on aws web server.

Linux Security Tutorial || Linux Security Crash Course

Linux Security Tutorial || Linux Security Crash Course. In this video, This is crash course on Linux Security. You will Learn learn about wide range of Linux security topics such as: - Linux Security : Authentication (PAM) - Linux Security : Authorization (sudo, setuid, setgid, ACL) - Linux Security : Audit (auditd) - Linux Security : Services (sshd) - Linux Security : Firewall (iptable, firewalld) - Linux Security : Intrusion detection (AIDE) - Linux Security : Compliance (OPEN SCAP)

2 Ways to Upgrade Ubuntu 18.04/18.10 To Ubuntu 19.04 (GUI & Terminal)

This tutorial is going to you 2 ways to upgrade Ubuntu 18.04 and Ubuntu 18.10 to 19.04. The first method uses the graphical update manger and the second method uses command line. Usually you use the graphical update manager to upgrade Ubuntu desktop and use command line to upgrade Ubuntu server, but the command-line method works for desktops too.