这篇文章受密码保护，输入密码才能阅读

Box Info OSLinuxDifficultyMedium Nmap [root@kali] /home/kali/Strutted ❯ nmap strutted.htb -sV PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH 8.9p1 Ubuntu 3ubuntu0.10 (…

Box Info OSLinuxDifficultyHard Nmap [root@kali] /home/kali/Interceptor ❯ nmap 192.168.56.123 -sV -A -p- PORT STATE SERVICE VERSION 21/tcp open ftp vsftpd 3.0.3 80/tcp open…

Box Info OSWindowsDifficultyMedium Nmap [root@kali] /home/kali/TheFrizz ❯ nmap thefrizz.htb -sV -A PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH for_Windows_9.5 (prot…

Box Info OSLinuxDifficultyLow Nmap [root@kali] /home/kali/Loweb ❯ nmap 192.168.56.122 -sV -A -p- PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH 9.2p1 Debian 2+deb12u5 …

Box Info OSLinuxDifficultyMedium Nmap [root@kali] /home/kali ❯ nmap 192.168.56.119 -sV -A PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH 9.2p1 Debian 2+deb12u5 (protoc…

Box Info OSLinuxDifficultyLow Nmap [root@kali] /home/kali/Lower4 ❯ nmap 192.168.56.120 -sV -A PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH 8.4p1 Debian 5+deb11u1 (pr…

Box Info OSLinuxDifficultyMedium Nmap [root@kali] /home/kali/Entropy ❯ nmap 192.168.56.117 -sV -A -p- PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH 9.2p1 Debian 2+deb…

Box Info OSLinuxDifficultyHard Nmap [root@kali] /home/kali ❯ nmap 192.168.56.116 -sV -A -p- PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH 7.9p1 Debian 10+deb10u4 (pro…

Web Cookie Monster Secret Recipe 任意登录后发现Cookie字段 进行URL解码和Base64解码 head-dump 在网页源码中发现一个/api-docs路由 进入之后执行一下/heapdump的GET方法，发现响应的是一个下载链接 用notepad++打开，搜索字符串 n0s4n1ty 1 没有任何检验的上传，…