Jump Ahead: Enum – Initial Access – User – Root – Resources TL;DR; To complete this machine, we start by enumerating open ports and see that ports 22 and 80 are open. Going to the webserver, we are presented with Magento – a type of online store. Researching this application, we find a Remote Code […]
Jump Ahead: Enum – Getting an auth token – Root – Resources TL;DR; To solve this machine, we begin by enumerating all open ports. We see there is FTP, SSH, and 3 web servers running. After enumerating port 80, we find config.php and /management. config.php contains what appears to be database credentials, and /management is […]
Jump Ahead: Enum – User – Root – Resources TL;DR; To solve this machine, we enumerate services using nmap. Enumerating SMB shares, we see there is a Backups share that we are able to mount to our local machine. On the share, there are 2 virtual hard drives. Mounting the larger one, we are able […]