VulnHub
Enumeration Port Scanning webサイトを確認します。 anonymousでFTPにログイン WireShark ssh Privilege Escalation Enumeration Port Scanning $ sudo nmap -Pn -sS -sV -p- 192.168.2.113 PORT STATE SERVICE VERSION 21/tcp open ftp vsftpd 3.0.2 22/tc…
nmap -Pn -sS -sV -p- 192.168.2.114 nikto -h 192.168.2.114 gobuster dir -u 192.168.2.114 -w /usr/share/dirb/wordlists/big.txt -t 50 -q -x php BurpSuite /command.php nc -lvp 5555 hydra -l jim -P pass.txt 192.168.2.114 ssh su jim su charles n…
nmap -Pn -sS -sV -p- 192.168.2.110 PORT STATE SERVICE VERSION 80/tcp open http Apache httpd 2.4.18 ((Ubuntu)) nikto -h 192.168.2.110 + OSVDB-8193: /index.php?module=ew_filemanager&type=admin&func=manager&pathext=../../../etc: EW FileManage…
nmap -Pn -sS -sV -p- 192.168.0.35 PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH 7.4p1 Debian 10 (protocol 2.0) 80/tcp open http nginx 1.10.3 31337/tcp open http Werkzeug httpd 0.11.15 (Python 3.5.3) ssh、80と31337でhttpが動いているこ…
