Hackthebox – cap 实战
recon
port scan
sudo masscan -e tun0 -p1-65535,U:1-65535 10.10.10.245 --rate=500 | tee masscan.txt 130 ⨯
tee: masscan.txt: Permission denied
Starting masscan 1.3.2 (http://bit.ly/14GZzcT) at 2021-08-10 07:12:19 GMT
Initiating SYN Stealth Scan
Scanning 1 hosts [131070 ports/host]
Discovered open port 22/tcp on 10.10.10.245
Discovered open port 21/tcp on 10.10.10.245
Discovered open port 80/tcp on 10.10.10.245
三个端口 22,21,80
web info 扫描目录
gobuster dir -u http://10.10.10.245 -w /usr/share/seclists/Discovery/Web-Content/common.txt -x * -t 30 -o gobuster.out
发现
/data (Status: 302) [Size: 208] [--> http://10.10.10.245/]
/ip (Status: 200) [Size: 17456]
/netstat (S