type
status
date
slug
summary
tags
category
icon
password
Status
Due date
Sep 18, 2023 04:16 AM

Progress

Task1:What Nmap scanning switch employs the use of default scripts during a scan?

-sC

Task2:What service version is found to be running on port 21?

vsftpd 3.0.3
notion image

Task3:What FTP code is returned to us for the "Anonymous FTP login allowed" message?

230

Task4:After connecting to the FTP server using the ftp client, what username do we provide when prompted to log in anonymously?

Anonymous
notion image

Task5:After connecting to the FTP server anonymously, what command can we use to download the files we find on the FTP server?

get
notion image

Task6:What is one of the higher-privilege sounding usernames in 'allowed.userlist' that we download from the FTP server?

admin
notion image

Task7:What version of Apache HTTP Server is running on the target host?

Apache httpd 2.4.41

Task8:What switch can we use with Gobuster to specify we are looking for specific filetypes?

-x
notion image

Task9:Which PHP file can we identify with directory brute force that will provide the opportunity to authenticate to the web service?

login.php
notion image
notion image

Sumit Flag

使用前面從ftp上取得的 allowed.userlist、allowed.userlist.passwd 來暴力破解
notion image
notion image
allowed.userlist
allowed.userlist.passwd
notion image
登入成功
notion image

Reference

 
相關文章
HTB - Vaccine
HTB - Oopsie
HTB - Archetype
HTB - ArchetypeHTB - Three