TASK 1
How many TCP ports are open?
답 : 2
TASK 2
What is the domain of the email address provided in the "Contact" section of the website?
답 : thetoppers.htb
TASK 3
In the absence of a DNS server, which Linux file can we use to resolve hostnames to IP addresses in order to be able to access the websites that point to those hostnames?
/etc/hosts에 등록해주자.
답 : /etc/hosts
TASK 4
Which sub-domain is discovered during further enumeration?
Gobuster가 최신 버전에서는 뒤에 --append-domain을 추가해줘야 나온다.
답 : s3.thetoppers.htb
TASK 5
Which service is running on the discovered sub-domain?
답 : Amazon s3
TASK 6
Which command line utility can be used to interact with the service running on the discovered sub-domain?
답 : AWSCLI
TASK 7
Which command is used to set up the AWS CLI installation?
답 : aws configure
TASK 8
What is the command used by the above utility to list all of the S3 buckets?
답 : aws s3 ls
TASK 9
This server is configured to run files written in what web scripting language?
답 : PHP
SUBMIT FLAG
Submit root flag
위에서 PHP를 사용한다는 것을 알았다.
이제 웹 서버로 스크립트 파일을 올려주자.
find명령으로 flag를 찾아준다.
/var/www/flag.txt
답 : a980d99281a28d638ac68b9bf9453c2b
'HackTheBox' 카테고리의 다른 글
| [HTB] Funnel (0) | 2023.03.21 |
|---|---|
| [HTB] Ignition (0) | 2023.03.20 |
| [HTB] Responder (0) | 2023.03.19 |
| [HTB] Crocodile (0) | 2023.03.18 |
| [HTB]Sequel (0) | 2023.03.17 |