Scanning and Enumeration

Scanning

Scanning 

kali@kali:~$ nmap -sV -p- 10.10.10.75 
PORT   STATE SERVICE VERSION
22/tcp open  ssh     OpenSSH 7.2p2 Ubuntu 4ubuntu2.2 (Ubuntu Linux; protocol 2.0)
80/tcp open  http    Apache httpd 2.4.18 ((Ubuntu))
Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel

Enumeration

Port 22

Vulnerable to Username Enumeration

​Port 80

Webpage for nibbles

Gobuster Scan

Nibbles Login

  • Login page available /admin.php

  • uploads available on

Potential Exploit

https://www.rapid7.com/db/modules/exploit/multi/http/nibbleblog_file_upload

PreviousNibblesNextExploitation

Last updated

Was this helpful?