HackTheBox - Retired - Beep Recon Recently I've been using Threader3000 for my recon scan, it's a threaded scanner written in python that does a quick up/down scan on all TCP than pipes that open ports into a nmap scan for you, and even saves all the output as xml for you. That is a lot of open ports. Here is the namp scan that it recommends we run I like to convert the xml output of the nmap scan to HTML to make it easier for me to read. xsltproc ./beep.htb/beep.htb.xml -o ./beep.html Wow that is a lot of ports, There are 16 ports that respond here. Nmap found some service names and version for us and we can see that some services use multiple ports Looks like Port 22 OpenSSH 4.3 Port 25 postfix SMTP Port 80 Apache 2.2.3 Port 110,143,993,995,4190 Cyrus Mail Port 111 RPC Port 3306 MySql Port 4559 HylaFax Port 5038 Asterisk Call Manager Port 10000 MiniServ Let's check out the webserver on port 80 It auto r
@circusmonkey404 on the twitters; DM for contact