Jump Ahead: Enum – User – Root – Resources TL;DR; To solve this machine, we begin by enumerating open ports – finding ports 80, 135, 139, 443, 445, 3306, 5000, 5040, 5985, 5986, 47001, 49664, 49665, 49666, 49667, 49668, 49669, and 49670 open. From port 443, we find a subdomain in the TLS certificate, which […]
Jump Ahead: Enum – User – Root – Resources TL;DR; To solve this machine, we begin by enumerating open services – finding ports 80 and 22 open. From the webserver, we find a vulnerable version of Drupal. Exploiting the vulnerability, we are able to get a shell on the machine as apache. From initial enumeration, […]
Jump Ahead: Enum – Getting Initial Access – User – Root – Resources TL;DR; To solve this machine, we begin by enumerating open services – finding ports 22, 80, and 3306 open. From a webserver, we discover a testing directory with index listing enabled. From the index, we find a backup copy of a WordPress […]