ufshanghai.blogg.se

The motto (“Security Through Obscurity”) only made me more curious. I opened it in a browser and got the following page: Nmap done: 1 IP address (1 host up) scanned in 40.08 80 was closed, but port 8080 was opened and hosted something that identified itself as BadHTTPServer. Service Info: OS: Linux CPE: cpe:/o:linux:linux_kernel No exact OS matches for host (test conditions non-ideal). If you know the service/version, please submit the following fingerprint at : Nmap scan report for obscurity.htb (10.10.10.168 )Ģ2/tcp open ssh OpenSSH 7.6p1 Ubuntu 4ubuntu0.3 (Ubuntu Linux protocol 2.0 )ġ service unrecognized despite returning data. Without further ado, let’s jump right in! Scanning & SuperSecureServer.pyĪ light nmap scan was enough to get me started: nmap -sV -O obscurity.htb -oN scan.txt Its IP address is ‘10.10.10.168’ and I added it to ‘/etc/hosts’ as ‘obscurity.htb’. I had lots of fun solving it, especially because I got to pwn so many custom applications.