Skip to main content

Posts

Showing posts with the label RCE
Hackthebox.eu - Sense - Retired - Updated Recon I've been using threader3000 for my recon scan on HTB. It does a staged scan, first it does a super quick up/down scan on all TCP ports then it takes the results of that scan and pipes it into a nmap scan. It automatically saves the results of the nmap scan as XML, which I then convert to HTML to make it pretty. xsltproc ./ 10.10.10.60/10.10.10.60.xml -o ./sense.html Just two ports open 80 & 443. It looks like 80 is lighttpd 1.4.35 When I try to browse using the dns name I added in my /etc/hosts I get this message. Weird. First it redirects me to HTTPS, then I get this error message If I try it by ip address. We get redirected to https again and this time we get a login page for pfsense. Which is an open source firewall project. https://www.pfsense.org/ A quick google search shows the default credentials for this should be Username: admin Password: pfsense But that doesn't work. Not much to go on now, let's see if the