First time to hit the real machine in HTB. It seems to be easier than series of boxes in Starting Point.

Enumeration

As usual, I start scanning this box with Nmap:

sudo nmap -sV -n -vv -Pn -T4 -p- -A 10.10.10.245 --open

PORT   STATE SERVICE REASON         VERSION21/tcp open  ftp     syn-ack ttl 63 vsftpd 3.0.322/tcp open  ssh     syn-ack ttl 63 OpenSSH 8.2p1 Ubuntu 4ubuntu0.2 (Ubuntu Linux; protocol 2.0)80/tcp open…

Trying to exploit the box manually w/o using Metasploit or other automated exploit tools, then learn lots of new things. We exactly do the same in OSCP exam.

Enumeration

As a routine, I use Nmap for port scanning and reconnaisance at the beginning. For explanation about nmap syntax and its parameter, visit this site: https://explainshell.com/

nmap -sV -n -vv -Pn -T4 -p- -A 10.10.10.29 --open

The nmap scanning result is very brief, not as my imagination. There’re only 2…


This box has several problems with connectivity, but still very juicy 😊

Enumeration

As the previous boxes, I use simple Nmap command to start port scanning and reconnaisance. Maybe most of the boxes in "Starting Point" don’t need deep enumeration but Nmap. For explanation about nmap syntax and its parameter, I…


It is considered a “Very easy” Box on HTB but causes troubles for me.

Enumeration

As a routine, I use Nmap for port scanning and reconnaisance at the beginning. For explanation about nmap syntax and its parameter, visit this site: https://explainshell.com/

nmap -sV -n -vv -Pn -T4 -p- -A 10.10.10.28 --open

The nmap scanning result is very brief, not as my imagination. There’re only 2…


This is the 1st box in my journey to OSCP exam.

Enumeration

Normally, I used Nmap to begin my port scanning and reconnaisance. For explanation about nmap syntax and its parameter, visit this site: https://explainshell.com/

nmap -sV -n -vv -Pn -T4 -p- -A 10.10.10.27 --open

PORT      STATE SERVICE      REASON          VERSION135/tcp   open  msrpc        syn-ack ttl 127 Microsoft Windows RPC139/tcp…

Victor Le

“Remember, Hacking isn’t a race. It’s a test of will, patience, and preparation.”

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store