Katana CTF Writeup | allinfosecnews.com

March 22, 2024, 5:19 p.m. | Substing

System Weakness - Medium systemweakness.com

As always, I began this challenge with an Nmap scan.

PORT     STATE SERVICE       REASON         VERSION
21/tcp   open  ftp           syn-ack ttl 61 vsftpd 3.0.3
22/tcp   open  ssh           syn-ack ttl 61 OpenSSH 7.9p1 Debian 10+deb10u2 (protocol 2.0)
| ssh-hostkey:
|   2048 89:4f:3a:54:01:f8:dc:b6:6e:e0:78:fc:60:a6:de:35 (RSA)    
| ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDp0J8d7K55SuQO/Uuh8GyKm2xlwCUG3/Jb6+7RlfgbwrCIOzuKXICcMHq4i8z52l/0x0JnN0GUIeNu6Ek/ZGEMK4y+zvAs0R6oPNlScpx0IaLDXTGrjPOcutmx+fy6WDW3/jJGLx
wu+55d6pAjzzQR37P1eqH8k9F6fbv6YUFbU+i68x9p5bXCC1m17PDO98Che+q32N6yM26CrQMOl5t1OzO3t1pbvMd3VOQA8Qd+fhz5tpxtRBTSM9ylQj2B+z6XjJnbMPhnO3C1oaYHjjL6KiTfD5YabDqsBf+ZHIdZpM+7fOqKkgHa4b
bIWPUXB/OuOJnORvEeRCALOzjcSrxr
|   256 dd:ac:cc:4e:43:81:6b:e3:2d:f3:12:a1:3e:4b:a3:22 (ECDSA)
| ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBDBsZi0z31ChZ3SWO/gDe+8WyFVPrFX7KgZNp8u/1vlhOSrmdZ32WAZZhTT8bblwgv83FeXPvH7btjDMzTuoYA8=
|   256 cc:e6:25:c0:c6:11:9f:88:f6:c4:26:1e:de:fa:e9:8b (ED25519) 
|_ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICo+dAzFw2csa366udGUkSre2W0qWWGoyWXwKiHk3YQc
80/tcp   open  http          syn-ack ttl 61 Apache httpd 2.4.38 ((Debian))
|_http-title: Katana X
|_http-server-header: Apache/2.4.38 (Debian)
| http-methods:
|_  Supported Methods: …

cybersecurity ethical hacking hacking linux technology

More from systemweakness.com / System Weakness - Medium

Protect Yourself from Online Scams: Essential Phishing Email Analysis Techniques. 23 hours ago | systemweakness.com

cybersecurity ethical hacking information technology malware +1

Cross-Site Scripting: Understanding, Preventing, and Mitigating Risks 1 day, 14 hours ago | systemweakness.com

continue cross-site cybersecurity data +18

University Linux Course (CTIS166) VS HackTheBox Academy Linux Fundamentals Module 1 day, 14 hours ago | systemweakness.com

bilkent-üniversitesi gnu-linux information technology linux +1

TryHackMe — LDAP Injection — Writeup 1 day, 14 hours ago | systemweakness.com

cybersecurity cybersecurity awareness tryhackme tryhackme-walkthrough +1

Analyzing WSH RAT 1 day, 14 hours ago | systemweakness.com

cyberchef cybersecurity javascript malware analysis +1

The Essential Cybersecurity Mindset 1 day, 14 hours ago | systemweakness.com

age career advice cybersecurity cyber security awareness +20

Secure Architecture: Infrastructure Controls 1 day, 14 hours ago | systemweakness.com

architecture article ask controls +12

Data Breaching in Secure Companies 1 day, 14 hours ago | systemweakness.com

breach business companies continue +12

How Prompt Injection Can Steal Your Data 3 days, 18 hours ago | systemweakness.com

ai chatbots chatgpt cybersecurity +1

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote

View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC

View on infosec-jobs.com