Pov-HackTheBox
信息搜集
nmap -sV -sC -v --min-rate 1000 10.10.11.251
扫描结果
PORT STATE SERVICE VERSION
80/tcp open tcpwrapped
|_http-title: pov.htb
| http-methods:
|_ Supported Methods: GET HEAD
我们将域名pov.htb
添加到/etc/hosts
方便访问
打开后发现是企业网站,扫出来子域名dev.pov.htb
gobuster vhost -u http://pov.htb -w /usr/share/seclists/Discovery/DNS/subdomains-top1million-5000.txt --append-domain
===============================================================
Gobuster v3.6
by OJ Reeves (@TheColonial) & Christian Mehlmauer (@firefart)
=====&