InfoSec LAB

Conceal_Re-Scan

Created: 2 min read

I established a direct VPN connection with the target host. Scanning for service is much needed.

RustScan

┌──(kali㉿kali)-[~/archive/htb/labs/conceal]
└─$ rustscan -a $IP -b 20000
The Modern Day Port Scanner.
________________________________________
: https://discord.gg/GFrQsGy           :
: https://github.com/RustScan/RustScan :
 --------------------------------------
🌍HACK THE PLANET🌍
 
[~] The config file is expected to be at "/home/kali/.rustscan.toml"
[~] Automatically increasing ulimit value to 5000.
[!] File limit is lower than default batch size. Consider upping with --ulimit. May cause harm to sensitive servers
open 10.10.10.116:21
open 10.10.10.116:80
open 10.10.10.116:135
open 10.10.10.116:139
open 10.10.10.116:445
open 10.10.10.116:49664
open 10.10.10.116:49665
open 10.10.10.116:49666
open 10.10.10.116:49667
open 10.10.10.116:49668
open 10.10.10.116:49669
open 10.10.10.116:49670

Nmap

┌──(kali㉿kali)-[~/archive/htb/labs/conceal]
└─$ nmap -sC -sV -p- $IP   
Starting Nmap 7.93 ( https://nmap.org ) at 2023-01-20 07:12 CET
Stats: 0:01:17 elapsed; 0 hosts completed (1 up), 1 undergoing Service Scan
Service scan Timing: About 41.67% done; ETC: 07:14 (0:00:55 remaining)
Nmap scan report for 10.10.10.116
Host is up (0.033s latency).
Not shown: 65523 closed tcp ports (conn-refused)
PORT      STATE SERVICE       VERSION
21/tcp    open  ftp           Microsoft ftpd
| ftp-syst: 
|_  SYST: Windows_NT
|_ftp-anon: Anonymous FTP login allowed (FTP code 230)
80/tcp    open  http          Microsoft IIS httpd 10.0
|_http-server-header: Microsoft-IIS/10.0
| http-methods: 
|_  Potentially risky methods: TRACE
|_http-title: IIS Windows
135/tcp   open  msrpc         Microsoft Windows RPC
139/tcp   open  netbios-ssn   Microsoft Windows netbios-ssn
445/tcp   open  microsoft-ds?
49664/tcp open  msrpc         Microsoft Windows RPC
49665/tcp open  msrpc         Microsoft Windows RPC
49666/tcp open  msrpc         Microsoft Windows RPC
49667/tcp open  msrpc         Microsoft Windows RPC
49668/tcp open  msrpc         Microsoft Windows RPC
49669/tcp open  msrpc         Microsoft Windows RPC
49670/tcp open  msrpc         Microsoft Windows RPC
Service Info: OS: Windows; CPE: cpe:/o:microsoft:windows
 
Host script results:
| smb2-security-mode: 
|   311: 
|_    Message signing enabled but not required
| smb2-time: 
|   date: 2023-01-20T06:13:35
|_  start_date: 2023-01-20T05:28:59
 
Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 103.64 seconds

Interactive Graph View

Backlinks