Jump Ahead: Enum – User – Root – Resources TL;DR; To solve this machine, we begin by enumerating exposed services – finding ports 22 and 80 open. Using source code analysis on the web server, we find a login page for CuteNews CMS, as well as its version. Exploiting a vulnerability in the avatar uploader, […]
Jump Ahead: Enum – User – Root – Resources TL;DR; To solve this machine, we begin by enumerating open services – finding ports 80, 8089, and 22 open. Navigating to the webserver on port 80, we find a website appearing to be hosted for healthcare providers. Looking around the site, we find a potential hostname. […]
Jump Ahead: Enum – Initial Foothold – User – Root – Resources TL;DR; To solve this machine, we begin by enumerating open services – finding ports 80, 3690, and 5985 open. Checking out port 3690 we learn it is a subversion server. While enumerating it, we find a set of credentials as well as several […]