InfoSec LAB

SolidState_Web

Created: 2 min read

Web

Nmap discovered a web server on the target port 80 It’s running Apache httpd 2.4.25

Website features a team of information security professionals

There is an email address at the contact section. It has a domain information despite looking very much dummy

Fuzzing

┌──(kali㉿kali)-[~/archive/htb/labs]
└─$ ffuf -c -w /usr/share/wordlists/seclists/Discovery/Web-Content/directory-list-2.3-big.txt -u http://$IP/FUZZ -e .txt,.php,.html -ic  
________________________________________________
 
 :: Method           : GET
 :: URL              : http://10.10.10.51/FUZZ
 :: Wordlist         : FUZZ: /usr/share/wordlists/seclists/Discovery/Web-Content/directory-list-2.3-big.txt
 :: Extensions       : .txt .php .html 
 :: Follow redirects : false
 :: Calibration      : false
 :: Timeout          : 10
 :: Threads          : 40
 :: Matcher          : Response status: 200,204,301,302,307,401,403,405,500
________________________________________________
 
index.html              [Status: 200, Size: 7776, Words: 525, Lines: 180, Duration: 34ms]
images                  [Status: 301, Size: 311, Words: 20, Lines: 10, Duration: 40ms]
about.html              [Status: 200, Size: 7183, Words: 680, Lines: 130, Duration: 29ms]
services.html           [Status: 200, Size: 8404, Words: 856, Lines: 131, Duration: 30ms]
assets                  [Status: 301, Size: 311, Words: 20, Lines: 10, Duration: 26ms]
README.txt              [Status: 200, Size: 963, Words: 110, Lines: 34, Duration: 30ms]
LICENSE.txt             [Status: 200, Size: 17128, Words: 2798, Lines: 64, Duration: 28ms]
logitech-quickcam_W0QQcatrefZC5QQfbdZ1QQfclZ3QQfposZ95112QQfromZR14QQfrppZ50QQfsclZ1QQfsooZ1QQfsopZ1QQfssZ0QQfstypeZ1QQftrtZ1QQftrvZ1QQftsZ2QQnojsprZyQQpfidZ0QQsaatcZ1QQsacatZQ2d1QQsacqyopZgeQQsacurZ0QQsadisZ200QQsaslopZ1QQsofocusZbsQQsorefinesearchZ1.html [Status: 403, Size: 542, Words: 22, Lines: 12, Duration: 27ms]
Progress: [3626251/5095280] :: Job [1/1] :: 1383 req/sec :: :: P[WARN] Caught keyboard interrupt (Ctrl-C)

ffuf reveals a few. That /README.txt is a red flag. This whole web server might just be a website template

The last file looks like a driver; logitech-quickcam_W0QQcatrefZC5QQfbdZ1QQfclZ3QQfposZ95112QQfromZR14QQfrppZ50QQfsclZ1QQfsooZ1QQfsopZ1QQfssZ0QQfstypeZ1QQftrtZ1QQftrvZ1QQftsZ2QQnojsprZyQQpfidZ0QQsaatcZ1QQsacatZQ2d1QQsacqyopZgeQQsacurZ0QQsadisZ200QQsaslopZ1QQsofocusZbsQQsorefinesearchZ1.html

/README.txt

Yeah. It is a website template.

i found it right here The author just replaced the content

The last file

403

Interactive Graph View

Backlinks