Machine:
Information gathering
Port scanning
- Lets do a nmap scan to get the open ports
nmap -p- -sS -Pn -n --min-rate 5000 10.10.11.86
nmap -p22,80,4369 -sCV -Pn -n --min-rate 5000 10.10.11.86 -vvvShow
Web Enumeration
- There are a HTTP port open so lets enumerate the web service, in order to know the tecnologies running we can use whatweb & wappanalyzer
whatweb -a 3 http://soulmate.htb/Show
- The home page show some names:
Show
- We can register and login
/register.php,/login.php
Show
