OffSec — Dawn Walkthorough | allinfosecnews.com

Jan. 31, 2024, 1:23 p.m. | xocybersec

System Weakness - Medium systemweakness.com

Hacking, Misconfigured Permissions, Cronjobs

OffSec — Dawn Walkthrough

A walkthrough with my tactics, techniques, and procedures.

Reconnaissance/Scanning:

Let’s start things off with a network scan to see which ports are open and the services running on each.

$ nmap -A -O -sC -sV -p- <machine_IP>

Nmap scan results.

Scanning for directories with Gobuster:

Contents of /logs directory:

Contents of /logs directory.

I couldn’t view any except the management.log file. I’ll parse through that after I enumerate some more.

Enumerating …

a network cybersecurity directory gobuster hacking logs misconfigured network nmap offsec pentesting permissions ports privilege escalation procedures reconnaissance results running scan scanning services start tactics techniques things walkthrough

Visit resource

More from systemweakness.com / System Weakness - Medium

Protect Yourself from Online Scams: Essential Phishing Email Analysis Techniques. 1 day, 6 hours ago | systemweakness.com

cybersecurity ethical hacking information technology malware +1

Cross-Site Scripting: Understanding, Preventing, and Mitigating Risks 1 day, 21 hours ago | systemweakness.com

continue cross-site cybersecurity data +18

University Linux Course (CTIS166) VS HackTheBox Academy Linux Fundamentals Module 1 day, 21 hours ago | systemweakness.com

bilkent-üniversitesi gnu-linux information technology linux +1

TryHackMe — LDAP Injection — Writeup 1 day, 21 hours ago | systemweakness.com

cybersecurity cybersecurity awareness tryhackme tryhackme-walkthrough +1

Analyzing WSH RAT 1 day, 21 hours ago | systemweakness.com

cyberchef cybersecurity javascript malware analysis +1

The Essential Cybersecurity Mindset 1 day, 21 hours ago | systemweakness.com

age career advice cybersecurity cyber security awareness +20

Secure Architecture: Infrastructure Controls 1 day, 21 hours ago | systemweakness.com

architecture article ask controls +12

Data Breaching in Secure Companies 1 day, 21 hours ago | systemweakness.com

breach business companies continue +12

How Prompt Injection Can Steal Your Data 4 days, 1 hour ago | systemweakness.com

ai chatbots chatgpt cybersecurity +1

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia

View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)

View on infosec-jobs.com

all InfoSec news

OffSec — Dawn Walkthorough

Hacking, Misconfigured Permissions, Cronjobs

OffSec — Dawn Walkthrough

A walkthrough with my tactics, techniques, and procedures.

Reconnaissance/Scanning:

More from systemweakness.com / System Weakness - Medium

Jobs in InfoSec / Cybersecurity

CyberSOC Technical Lead

Cyber Security Strategy Consultant

Cyber Security Senior Consultant

Sr. Product Manager

Security Compliance Strategist

Cloud Security Architect, Lead