all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

HTB, Solidstate user and root pwn

Add to bookmarks
Jan. 18, 2023, 1:32 p.m. | edoubleu

System Weakness - Medium systemweakness.com

Let’s jump in from the perspective of a scriptkiddy

Running Nmap gets the results below

 sudo nmap -sC -sV -v -T4 -sT <Target IP>
PORT STATE SERVICE VERSION
22/tcp open ssh OpenSSH 7.4p1 Debian 10+deb9u1 (protocol 2.0)
| ssh-hostkey: 
| 2048 770084f578b9c7d354cf712e0d526d8b (RSA)
| 256 78b83af660190691f553921d3f48ed53 (ECDSA)
|_ 256 e445e9ed074d7369435a12709dc4af76 (ED25519)
25/tcp open smtp?
|_smtp-commands: Couldn't establish connection on port 25
80/tcp open http Apache httpd 2.4.25 ((Debian))
| http-methods: 
|_ Supported Methods: POST OPTIONS HEAD GET
|_http-server-header: Apache/2.4.25 (Debian) …

apache debian ecdsa ed25519 head header home htb http httpd infosec nmap openssh options perspective port protocol results root rsa server service smtp solid ssh state sudo target tcp

Visit resource

More from systemweakness.com / System Weakness - Medium

Protect Yourself from Online Scams: Essential Phishing Email Analysis Techniques. 22 hours ago | systemweakness.com
cybersecurity ethical hacking information technology malware +1
Cross-Site Scripting: Understanding, Preventing, and Mitigating Risks 1 day, 13 hours ago | systemweakness.com
continue cross-site cybersecurity data +18
University Linux Course (CTIS166) VS HackTheBox Academy Linux Fundamentals Module 1 day, 13 hours ago | systemweakness.com
bilkent-üniversitesi gnu-linux information technology linux +1
TryHackMe — LDAP Injection — Writeup 1 day, 13 hours ago | systemweakness.com
cybersecurity cybersecurity awareness tryhackme tryhackme-walkthrough +1
Analyzing WSH RAT 1 day, 13 hours ago | systemweakness.com
cyberchef cybersecurity javascript malware analysis +1
The Essential Cybersecurity Mindset 1 day, 13 hours ago | systemweakness.com
age career advice cybersecurity cyber security awareness +20
Secure Architecture: Infrastructure Controls 1 day, 13 hours ago | systemweakness.com
architecture article ask controls +12
Data Breaching in Secure Companies 1 day, 13 hours ago | systemweakness.com
breach business companies continue +12
How Prompt Injection Can Steal Your Data 3 days, 17 hours ago | systemweakness.com
ai chatbots chatgpt cybersecurity +1

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote
View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC
View on infosec-jobs.com