Sharing writeups of CTF challenges and Machines
Nmap 22, 80, and 3000 ports are open. Web pages Port 3000 is uncommon. Checked the page. The web page displays a message like json. This kind of thing is called graphql. I referred to the documentation to learn how to use it. I managed to find out the user credentials using the query below. … Read More “OSCP series – Help write-up” »
Enumeration nmap Nmap result is as below. Check FTP and SSH ports are open. Also, FTP allows anonymous login. Therefore, login as anonymous. Download all the files and enumerate the directories and files. We can see the users in passwd. netadmin. checked. In the config directory, we can find wireless information. There is the password! … Read More “Hack the box – Wifinetic – writeup” »
Enumeration Start with an Nmap scan. SSH port and web server are open. However, It failed to redirect to the domain address. Let’s add it to the file. Now, let’s visit the web page and see how it looks. It’s a file conversion web page. I did the Nmap scan again since we added the … Read More “Hack the box – Precious write-up” »
Enumeration Scan the target machine with nmap. The web server and ssh are open. Let’s check the web server first. If we go to the page, we see the image file saying Don’t Bug me! I couldn’t find any useful information on the web page and the source code. There must be something we can … Read More “Hack the box – Shocker (CVE-2014-6271)” »
Enumeration Got the following result from the Nmap scan. I can see web servers are open and the nmap script’s saying changelog.txt is interesting. If we visit the web page, we can see the login page. I tried logging in with the default credentials for pfsense. admin:pfsense However, I failed. Let’s check the changelog.txt file … Read More “Hack the box – machine – Sense” »
Enumeration nmap the target machine. The result shows me the keyword activemq. I googled activemq exploit. I found it has the vulnerability CVE-2023-46604 and the default port is 61616. Also, I found that it is on metasploit. So I chose metasploit instead of using the github source code. user flag That’s the one I found. … Read More “Hack the box – machine – Broker (CVE-2023-46604)” »
