InfoSec LAB

Irked_Web

Created: 2 min read

Web

Nmap discovered a web server running on the target port 80

Webroot It appears to be pretty empty It also notes that IRC is almost working. Could that be referring to the IRC service?

Fuzzing

┌──(kali㉿kali)-[~/archive/htb/labs/irked]
└─$ ffuf -c -w /usr/share/wordlists/seclists/Discovery/Web-Content/directory-list-2.3-medium.txt -u http://$IP:80/FUZZ -ic -e .txt,.php,.html
________________________________________________
 
 :: Method           : GET
 :: URL              : http://10.10.10.117:80/FUZZ
 :: Wordlist         : FUZZ: /usr/share/wordlists/seclists/Discovery/Web-Content/directory-list-2.3-medium.txt
 :: Extensions       : .txt .php .html 
 :: Follow redirects : false
 :: Calibration      : false
 :: Timeout          : 10
 :: Threads          : 40
 :: Matcher          : Response status: 200,204,301,302,307,401,403,405,500
________________________________________________
 
index.html              [Status: 200, Size: 72, Words: 5, Lines: 4, Duration: 31ms]
manual                  [Status: 301, Size: 313, Words: 20, Lines: 10, Duration: 27ms]

/manual/

/manual/

It’s just the default installation page for Apache

Fuzzing

┌──(kali㉿kali)-[~/archive/htb/labs/irked]
└─$ ffuf -c -w /usr/share/wordlists/seclists/Discovery/Web-Content/raft-large-directories.txt -u http://irked.htb/manual/FUZZ/ -ic  
________________________________________________
 
 :: Method           : GET
 :: URL              : http://irked.htb/manual/FUZZ/
 :: Wordlist         : FUZZ: /usr/share/wordlists/seclists/Discovery/Web-Content/raft-large-directories.txt
 :: Follow redirects : false
 :: Calibration      : false
 :: Timeout          : 10
 :: Threads          : 40
 :: Matcher          : Response status: 200,204,301,302,307,401,403,405,500
________________________________________________
 
images                  [Status: 200, Size: 9467, Words: 443, Lines: 57, Duration: 35ms]
en                      [Status: 200, Size: 9206, Words: 529, Lines: 121, Duration: 30ms]
de                      [Status: 200, Size: 9290, Words: 518, Lines: 123, Duration: 32ms]
fr                      [Status: 200, Size: 9479, Words: 572, Lines: 121, Duration: 32ms]
style                   [Status: 200, Size: 2980, Words: 187, Lines: 27, Duration: 31ms]
es                      [Status: 200, Size: 9255, Words: 637, Lines: 121, Duration: 30ms]
ja                      [Status: 200, Size: 9649, Words: 472, Lines: 121, Duration: 31ms]
tr                      [Status: 200, Size: 9416, Words: 528, Lines: 120, Duration: 30ms]
da                      [Status: 200, Size: 9041, Words: 512, Lines: 117, Duration: 30ms]
ko                      [Status: 200, Size: 8513, Words: 508, Lines: 114, Duration: 32ms]
pt-br                   [Status: 200, Size: 9173, Words: 570, Lines: 119, Duration: 30ms]
zh-cn                   [Status: 200, Size: 8884, Words: 447, Lines: 116, Duration: 33ms]
:: Progress: [62284/62284] :: Job [1/1] :: 1364 req/sec :: Duration: [0:00:48] :: Errors: 3 ::

This directories appear to be nothing more than rendering the page with different languages

Overall, there isn’t much going on with the web server for now.

Interactive Graph View

Backlinks