RustScan
┌──(kali㉿kali)-[~/archive/htb/labs/mentor]
└─$ rustscan -a $IP -b 25000
________________________________________
: https://discord.gg/GFrQsGy :
: https://github.com/RustScan/RustScan :
--------------------------------------
0day was here ♥
[~] The config file is expected to be at "/home/kali/.rustscan.toml"
[~] Automatically increasing ulimit value to 5000.
[!] File limit is lower than default batch size. Consider upping with --ulimit. May cause harm to sensitive servers
open 10.10.11.193:22
open 10.10.11.193:80Nmap
┌──(kali㉿kali)-[~/archive/htb/labs/mentor]
└─$ nmap -Pn -sC -sV -p22,80 $IP
Starting Nmap 7.94 ( https://nmap.org ) at 2023-12-27 10:37 CET
Nmap scan report for 10.10.11.193
Host is up (0.026s latency).
PORT STATE SERVICE VERSION
22/tcp open ssh OpenSSH 8.9p1 Ubuntu 3 (Ubuntu Linux; protocol 2.0)
| ssh-hostkey:
| 256 c7:3b:fc:3c:f9:ce:ee:8b:48:18:d5:d1:af:8e:c2:bb (ECDSA)
|_ 256 44:40:08:4c:0e:cb:d4:f1:8e:7e:ed:a8:5c:68:a4:f7 (ED25519)
80/tcp open http Apache httpd 2.4.52
|_http-title: Did not follow redirect to http://mentorquotes.htb/
|_http-server-header: Apache/2.4.52 (Ubuntu)
Service Info: Host: mentorquotes.htb; OS: Linux; CPE: cpe:/o:linux:linux_kernel
Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 7.34 secondsThe target system appears to be Ubuntu
UDP
┌──(kali㉿kali)-[~/archive/htb/labs/mentor]
└─$ sudo nmap -sU -top-ports 1000 $IP
starting nmap 7.94 ( https://nmap.org ) at 2023-12-27 10:36 CET
Nmap scan report for 10.10.11.193
Host is up (0.028s latency).
not shown: 956 closed udp ports (port-unreach), 43 open|filtered udp ports (no-response)
PORT STATE SERVICE
161/udp open snmp
nmap done: 1 IP address (1 host up) scanned in 1036.53 seconds
┌──(kali㉿kali)-[~/archive/htb/labs/mentor]
└─$ sudo nmap -Pn -sU -sC -sV -p161 $IP
starting nmap 7.94 ( https://nmap.org ) at 2023-12-27 11:10 CET
Nmap scan report for mentorquotes.htb (10.10.11.193)
Host is up (0.028s latency).
PORT STATE SERVICE VERSION
161/udp open snmp SNMPv1 server; net-snmp SNMPv3 server (public)
| snmp-info:
| enterprise: net-snmp
| engineidformat: unknown
| engineiddata: a124f60a99b99c6200000000
| snmpengineboots: 67
|_ snmpenginetime: 1h55m56s
| snmp-sysdescr: Linux mentor 5.15.0-56-generic #62-Ubuntu SMP Tue Nov 22 19:54:14 UTC 2022 x86_64
|_ system uptime: 1h55m56.43s (695643 timeticks)
service info: Host: mentor
service detection performed. please report any incorrect results at https://nmap.org/submit/ .
nmap done: 1 IP address (1 host up) scanned in 0.51 secondsThe hostname of the target system as well as the kernel have been discovered;
mentorlinux mentor 5.15.0-56-generic #62-ubuntu smp tue nov 22 19:54:14 UTC 2022 x86_64