[StartingPoint][Tier0]Explosion

2024-04-03 20:04

本文主要是介绍[StartingPoint][Tier0]Explosion,希望对大家解决编程问题提供一定的参考价值,需要的开发者们随着小编来一起学习吧!

Task 1

What does the 3-letter acronym RDP stand for?

(3个字母的首字母缩略词RDP代表什么?)

Remote Desktop Protocol

Task 2

What is a 3-letter acronym that refers to interaction with the host through a command line interface?

(什么是 3 个字母的首字母缩略词,指的是通过命令行界面与主机交互?)

cli

Task 3

What about graphical user interface interactions?

(图形用户界面交互呢?)

gui

Task 4

What is the name of an old remote access tool that came without encryption by default and listens on TCP port 23?

(默认情况下没有加密并在 TCP 端口 23 上侦听的旧远程访问工具的名称是什么?)

telnet

Task 5

What is the name of the service running on port 3389 TCP?

(在端口 3389 TCP 上运行的服务的名称是什么?)

ms-wbt-server

Task 6

What is the switch used to specify the target host’s IP address when using xfreerdp?

(使用 xfreerdp 时,用于指定目标主机 IP 地址的开关是什么?)

Example:

$ xfreerdp --help | grep "host"

image

/v:

Task 7

What username successfully returns a desktop projection to us with a blank password?

(哪个用户名成功地将桌面投影返回给我们一个空白密码?)

Administrator

Flag

由于HTB平台在海外,这里进行RDP连接的时候网络波动是比较大的,所以这里命令多试几次

或者,SartingPoint下载TCP连接的Openxpn,这样比UDP稳定

image

Example:

$ xfreerdp /v:10.129.219.140 /u:Administrator /p:

flag在桌面

951fa96d7830c451b536be5a6be008a0

这篇关于[StartingPoint][Tier0]Explosion的文章就介绍到这儿,希望我们推荐的文章对编程师们有所帮助!



http://www.chinasem.cn/article/873847

相关文章

Hack The Box(黑客盒子)Explosion篇

题目 情报 该靶机情报披露:可能存在协议缺陷,可能存在弱凭据缺陷。 实战答题 TASK1 度娘结果:远程桌面协议 Remote Desktop Protocol TASK2 command line interface cli TASK3 gui TASK4 侦听23端口的旧远程访问工具。 telnet TASK5

[StartingPoint][Tier2]Included

LXD https://www.hackingarticles.in/lxd-privilege-escalation/ Task 1 What service is running on the target machine over UDP? (目标机器上通过UDP运行的服务是什么?) $ nmap -sU 10.129.232.86 -p 69 tftp Task 2

[StartingPoint][Tier2]Unified

Task 1 Which are the first four open ports? (开启了哪4个端口?) $ namp -sC -sV -v 10.129.104.207 22,6789,8080,8443 Task 2 What is the title of the software that is running running on port 8443? (8

[StartingPoint][Tier2]Archetype

Task 1 Which TCP port is hosting a database server? (哪个端口开放了数据库服务) $ nmap 10.129.95.187 -sC --min-rate 1000 1433 Task 2 What is the name of the non-Administrative share available over SMB?

[StartingPoint][Tier1]Pennyworth

Important Jenkins是一个用于自动化构建、测试和部署软件项目的开源持续集成和持续部署(CI/CD)工具。它允许开发团队自动执行和监控在软件开发过程中的重复性任务,例如构建代码、运行测试、部署应用程序等。Jenkins提供了一个易于使用的Web界面,可以配置各种任务和工作流,并通过插件系统扩展其功能,以满足不同团队和项目的需求。Jenkins的灵活性和可扩展性使其成为许多开发团队的首

[StartingPoint][Tier1]Ignition

Task 1 Which service version is found to be running on port 80? (发现哪个服务版本在端口 80 上运行?) $ nmap -sV -Pn 10.129.1.27 -p 80 nginx 1.14.2 Task 2 What is the 3-digit HTTP status code returned when

[StartingPoint][Tier1]Sequel

Task 1 During our scan, which port do we find serving MySQL? (在扫描过程中,我们发现哪个端口为 MySQL 提供服务?) `` 3306 Task 2 What community-developed MySQL version is the target running? (目标正在运行哪个社区开发的 MySQL

[StartingPoint][Tier1]Crocodile

Task 1 What Nmap scanning switch employs the use of default scripts during a scan? (哪些 Nmap 扫描开关在扫描期间使用默认脚本?) -sC Task 2 What service version is found to be running on port 21? 发现端口 21 上运行的服务

[StartingPoint][Tier0]Mongod

Task 1 How many TCP ports are open on the machine? (机器上打开了多少个 TCP 端口?) Example: $ sudo nmap -sS -T4 10.129.222.112 -p 27017,22 2 Task 2 Which service is running on port 27017 of the remote

[StartingPoint][Tier0]Dancing

Task 1 What does the 3-letter acronym SMB stand for? (3个字母的首字母缩略词SMB代表什么?) Server Message Block Task 2 What port does SMB use to operate at? (SMB 使用什么端口进行操作?) 445 Task 3 What is the ser