HacktheBox.eu - Retired - Tenten Recon As always I start with a staged scan, just a simple up/down scan on all TCP ports Nmap -T4 -p- -oX /root/Desktop/HTB/Tenten/nmapb.xml Then convert that to HTML to make it pretty # xsltproc /root/Desktop/HTB/Tenten/nmapb.xml -o /root/Desktop/HTB/Tenten/nmapb.html Just ports 22 and 80 open, let's do another scan with just those two ports but add -A to finger OS/Services # nmap -T4 -A -p22,80 -oX /root/Desktop/HTB/Tenten/nmapf.xml 10.10.10.10 Then convert that to HTML too # xsltproc /root/Desktop/HTB/Tenten/nmapf.xml -o /root/Desktop/HTB/Tenten/nmapf.html Let's recap here Looks like a Linux box running Apache 2.4.18 on Port 80 And OpenSSH on port 22 Let's browse to the webpage and see what we see. A basic webpage using wordpress Also found this login page pretty quickly Let's run Dirb to see what else we might find Dirb http://10.10.10.10 Here is a sampling of what Dirb found ----
@circusmonkey404 on the twitters; DM for contact