https://www.vulnhub.com/entry/zico2-1,210/
nat网络
arp-scan -l 比平常多出来的ip就是靶机了
nmap
很常规,22想到可能的ssh登录,80是进web搜集信息
22/tcp open ssh OpenSSH 5.9p1 Debian 5ubuntu1.10 (Ubuntu Linux; protocol 2.0)
| ssh-hostkey:
| 1024 68:60:de:c2:2b:c6:16:d8:5b:88:be:e3:cc:a1:25:75 (DSA)
| 2048 50:db:75:ba:11:2f:43:c9:ab:14:40:6d:7f:a1:ee:e3 (RSA)
|_ 256 11:5d:55:29