This is a hint as to the Windows VMs I’ll encounter later. ![]() Visiting this webserver returns a Microsoft ASP.NET error message: Don’t see much else I can do with this at this point. Still, no matter what kind of file I attach, the same error message comes back. home.php has a form that POSTs to /upload. Visiting /upload.php returns an error message: □ Press to use the Scan Management Menu™ □ Wordlist │ /usr/share/seclists/Discovery/Web-Content/raft-medium-directories.txt I’ll also try a parameter brute force on page to see if there’s something feroxbuster -u -x php Giving it page=, hoping it might try to load test.php from my server, fails as well. I’ll play around with trying to get it to include other pages, but nothing seems to change. ![]() The link leads to /index.php?page=home, which loads the same page. My notes from 2018 show OpenSSH 7.2p2 Ubuntu 4ubuntu2.2 (Ubuntu Linux protocol 2.0), which would be Ubuntu 16.04 xenial.Īll five webservers are running the same version of NGINX. This Changelog is on the HTB page for Fulcrum: This box was a getting a bunch of bad reviews due to stability, and the team recently rebuilt it to have all the same vectors, but on a bit more modern technology, which is why the OS is newer than the box. Nmap done: 1 IP address (1 host up) scanned in 51.67 secondsīased on the OpenSSH version, the host is likely running Ubuntu 20.04 focal, which is very strange for a box released in November 2017. Service Info: OS: Linux CPE: cpe:/o:linux:linux_kernel |_http-title: Site doesn't have a title (application/json charset=utf-8). |_http-title: Site doesn't have a title (text/html charset=UTF-8).Ģ2/tcp open ssh OpenSSH 8.2p1 Ubuntu 4ubuntu0.1 (Ubuntu Linux protocol 2.0)ĥ6423/tcp open http nginx 1.18.0 (Ubuntu) ![]() Warning: 10.10.10.62 giving up on port because retransmission cap hit (10).
0 Comments
Leave a Reply. |