Connecting to Hack The Box machine
checking connection with the target
Nmap scanning
What is telnet?
login to the machine
Capture the flag.
First, we need to connect to the HTB machine using a VPN that is downloaded from HTB (Hack The Box).
My VPN: 'starting_point_dracula2001 TCP.ovpn'
if you are getting an error in connecting to VPN (like due to connected ipv6) you can disable ipv6 by using the following command:
sysctl net.ipv6.conf.all.disable_ipv6=0
After getting the IP let's try to ping to the machine to check whether the host is up or down.
As you know Nmap scanning is used to scan the open ports and vulnerability.
Command: Nmap -A 10.129.251.109 {-A is used for an aggressive scan}
Nmap scanningafter the scan we get to know about telnet, so let's try to exploit it. let's get into telnet.
A network protocol that allows a user on one computer to log into another computer that is part of the same network.
command: telnet 10.129.251.109
Here we got stuck because we don't know the credentials. Here got a chance to do a brute-forcing attack. but first, let's try with some accounts that have self-explanatory names, such as
Administrator
Admin
Root
Let's attempt logging in with these credentials.
finally, we logged into the target system. Now let's check for the flag Now let's list the files in the system using the command
Command: ls
after the ls command, we can see the list of directories and files. we got 2 files: flag.txt and snap
let's open the flag.txt