Monitored-HackTheBox

信息搜集

nmap扫描一下端口

nmap -sV -sC -v --min-rate 1000 10.10.11.248

扫描结果如下

PORT     STATE    SERVICE  VERSION
22/tcp   open     ssh      OpenSSH 8.4p1 Debian 5+deb11u3 (protocol 2.0)
80/tcp   open     http     Apache httpd 2.4.56
| http-methods: 
|_  Supported Methods: GET
|_http-title: Did not follow redirect to https://nagios.monitored.htb/
|_http-server-header: Apache/2.4.56 (Debian)
84/tcp   filtered ctf
389/tcp  open     ldap     OpenLDAP 2.2.X - 2.3.X
443/tcp  open     ssl/http Apache httpd 2.4.56 ((Debian))

注意到80端口跳转到https://nagios.monitored.htb/且无法访问，我们试试添加到/etc/hosts成功访问

继续访问发现是登陆界面

然后就没有什么收获了，参考国外师傅wp是要进行 udp 扫描

sudo nmap -sV -sC -v -sU 10.10