TASK 1
What nmap scanning switch employs the use of default scripts during a scan?
-sC
TASK 2
What service version is found to be running on port 21?
vsftpd 3.0.3
nmap -A -p21 -T4 -v 10.129.170.57
TASK 3
What FTP code is returned to us for the "Anonymous FTP login allowed" message?
230
TASK 4
What command can we use to download the files we find on the FTP server?
get
TASK 5
What is one of the higher-privilege sounding usernames in the list we retrieved?
admin
TASK 6
What version of Apache HTTP Server is running on the target host?
2.4.41
nmap -A -p80 -T4 -v 10.129.170.57
TASK 7
What is the name of a handy web site analysis plug-in we can install in our browser?
wappalyzer
TASK 8
What switch can we use with gobuster to specify we are looking for specific filetypes?
-x
TASK 9
What file have we found that can provide us a foothold on the target?
login.php
SUBMIT FLAG
Submit root flag
先登录ftp查看文件
打开得到账号和密码
登录/login.php得到flag