OffSecNewbie.com

Work in Progress START Port scan to identify open ports [root:~/Desktop/popcorn]# nmap -p- 10.10.10.6 -oA ports Starting Nmap 7.70 ( https://nmap.org ) at 2018-04-11 12:25 BST Nmap scan report for 10.10.10.6 Host is up, received timestamp-reply ttl 63 (0.029s latency). Not shown: 65488 closed ports, 45 filtered ports Reason: 65488 resets and 45 no-responses Some closed ports may be reported...

LEARNED Using a proxy with nikto Gobuster can not search recursively Searchsploit can search output of nmap   START What ports are open on this machine [root:~/Desktop/inception]# nmap -p- 10.10.10.67 -T5 Starting Nmap 7.70 ( https://nmap.org ) at 2018-04-12 09:54 BST Nmap scan report for 10.10.10.67 Host is up, received echo-reply ttl 63 (0.034s latency). Not shown: 65533 filtered ports...

Skills Required Basic knowledge of Linux Enumerating ports and services Skills Learned Very Basic scripting Web enumeration Exploiting NOPASSWD START Nmap scan revealed 2 open ports 22 and 80 [root:~]# nmap -p- -f 10.10.10.75 Starting Nmap 7.70 ( https://nmap.org ) at 2018-04-16 12:10 BST Nmap scan report for 10.10.10.75 Host is up, received echo-reply ttl 63 (0.032s latency). Not shown:...

Skills Required
Basic knowledge of Linux
Enumerating ports and services
Basic understanding of cryptography

Skills Learned
SSH Tunneling
VNCViewer commands
Grep -vE to select non-matching lines

Skills Required Basic knowledge of Linux Enumerating ports and services Skills Learned Very Basic scripting Exploiting NOPASSWD Exploiting cron jobs START I checked to see what ports were open: Scanned all ports, scan with default NSE scripts (Considered useful for discovery and safe) and what version a service is running on that port. [root:~]# nmap -p- -sC -sV 10.10.10.68 Starting...