CTF Walkthrough

DEPLOY MACHINE FIND OPEN PORTS ON MACHINE we find open ports by runing nmap -AOV this is an os, aggressive and version scan but in my case i ran just nmap but for effectiveness you can add these

ENUMERATION We start with enumeration, which is the beginning of every successful exploit and then we see that only port 22(ssh) and 80(http) running on the ports so we start by taking a look at the

ENUMERATION We always start by basic enumeration with nmap using the stealth, port, version ans script scan we see a http-proxy running on port 8080 then we check the web-page, we notice tomcat

ENUMERATION Basic nmap scan shows us the number of ports running on the machine (i do -F fast scan because of bad network issues, but in more appropriate scan you should use the options -sCVS -p- for

ENUMERATION Basic nmap scan shows us the number of ports running on the machine (i do -F fast scan because of bad network issues, but in more appropriate scan you should use the options -sCVS -p- for