๐Ha-natraj(OffSec)
IP Address : 192.168.232.80
Step 1 : We will start with nmap scanning
nmap -A -vv -oN scan.txt 192.168.232.80
During nmap scan we could identify port 22,80 is open.
Step 2: we will try to use ssh login with default credentials.
after several default credentials tried none of them not working.now we will try to brute force using
Step 3 : We will try to do website enumeration using gobuster, nikto, ffuf, feroxuster, dirb
gobuster dir -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt -u http://192.168.232.80/
During gouster scan we could see the below directories we will be able to discover and try to navigate the directory
http://192.168.232.80/images http://192.168.232.80/console
ffuf -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt -u http://192.168.232.80/FUZZ
During ffuf scan we could see the below directories we will be able to discover and try to navigate the directory
http://192.168.232.80/images http://192.168.232.80/console
Last updated
Was this helpful?