Web
Nmap discovered an Apache HTTP service on the target port 6787
It also found out sunday as the CN from the SSL certificate.
That’s also registered for DNS
I will append that to the /etc/hosts file on Kali for local DNS resolution
Port 6787 is unusual port to run a web server on, but it would appear it isn’t just a web server.
according to a source, port 6787 is the registered for Sun Web Console Admin. That’s for SunOS
Navigating to the webroot gets re-directed to a login page; /solaris/login/
wappalyzer also identified the technologies involved
It’s written in Python 2.7.14.
I tried logging with default/weak credentials and none of them works
I was able to login to the web GUI as the sunny user using the same credential
This web app just displays system information. I don’t seem to be able to find an entry point through here.