Offsec - Funbox Easy - Jun 11th 2023
Target: [LAB_IP]
nmap -sV -sC -p- [LAB_IP] --open -oN FunboxEasy.scan
Starting Nmap 7.93 ( https://nmap.org ) at 2023-06-11 21:42 GMT
Nmap scan report for [LAB_IP]
Host is up (0.069s latency).
Not shown: 64870 closed tcp ports (conn-refused), 663 filtered tcp ports (no-response)
Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
PORT STATE SERVICE VERSION
22/tcp open ssh OpenSSH 8.2p1 Ubuntu 4ubuntu0.1 (Ubuntu Linux; protocol 2.0)
| ssh-hostkey:
| 3072 [HASH_REDACTED] (RSA)
| 256 [HASH_REDACTED] (ECDSA)
|_ 256 [HASH_REDACTED] (ED25519)
80/tcp open http Apache httpd 2.4.41 ((Ubuntu))
|_http-title: Apache2 Ubuntu Default Page: It works
|_http-server-header: Apache/2.4.41 (Ubuntu)
| http-robots.txt: 1 disallowed entry
|_gym
Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
Now since a apache webserver is open I'll run gobuster against it
gobuster dir -u http://[LAB_IP]:80 -w /usr/share/wordlists/dirb/common.txt 21:44:44
===============================================================
Gobuster v3.5
by OJ Reeves (@TheColonial) & Christian Mehlmauer (@firefart)
===============================================================
[+] Url: http://[LAB_IP]:80
[+] Method: GET
[+] Threads: 10
[+] Wordlist: /usr/share/wordlists/dirb/common.txt
[+] Negative Status codes: 404
[+] User Agent: gobuster/3.5
[+] Timeout: 10s
===============================================================
2023/06/11 21:44:45 Starting gobuster in directory enumeration mode
===============================================================
/.htpasswd (Status: 403) [Size: 280]
/.hta (Status: 403) [Size: 280]
/admin (Status: 301) [Size: 318] [--> http://[LAB_IP]/admin/]
/.htaccess (Status: 403) [Size: 280]
/index.html (Status: 200) [Size: 10918]
/index.php (Status: 200) [Size: 3468]
/robots.txt (Status: 200) [Size: 14]