10/3/2023 0 Comments What is freeciv on port 5555=NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)= If you know the service/version, please submit the following fingerprints at : |_http-title: Site doesn't have a title (text/plain).Ģ services unrecognized despite returning data. |_http-title: Site doesn't have a title (text/html).ĥ9777/tcp open http Bukkit JSONAPI httpd for Minecraft game server 3.6.0 or older | Content-Type: text/plain charset=US-ASCIIĤ2135/tcp open http ES File Explorer Name Response httpd Let’s jump in!Īs usual, we start with a full nmap scan, here are the results. This is listed as an easy Android machine! This is the first time I’ll be doing a live Android system vs the classic ‘static APK CTF’ scenario. SF:,DD, "HTTP/1 \.Welcome back! Today we are doing the Hack the Box machine - Explore. SF:: \x 20Close \r\n\r\n Invalid \x 20request \x 20line: \x 20HELP" )%r (SSLSessionReq SF:x2026 \r\n Content-Type: \x 20text/plain \x 20charset=US-ASCII \r\n Connection SF: \n Connection: \x 20Close \r\n\r\n Not \x 20a \x 20valid \x 20protocol \x 20version: SF:ent-Length: \x 2039 \r\n Content-Type: \x 20text/plain \x 20charset=US-ASCII \r SF:0supported: \x 20OPTIONS" )%r (RTSPRequest,BB, "HTTP/1 \. SF:in \x 20charset=US-ASCII \r\n Connection: \x 20Close \r\n\r\n Method \x 20not \x 2 SF:r \n Invalid \x 20request \x 20line: \x 20" )%r (GetRequest,5C, "HTTP/1 \. SF:t-Type: \x 20text/plain \x 20charset=US-ASCII \r\n Connection: \x 20Close \r\n\ $ nmap -p37425,42135,59777 -sV -Pn -oA Full 10.10.10.247Ĥ2135/tcp open http ES File Explorer Name Response httpdĥ9777/tcp open http Bukkit JSONAPI httpd for Minecraft game server 3.6.0 or older Nmap done: 1 IP address (1 host up ) scanned in 41.93 seconds To look for any other missing information, ran another nmap scan, this time to check all TCP ports, and found the following additional ports open: Let’s keep this information for now until we find a way to open it and get an interactive shell on the device. Interestingly I came across a write-up for a VulnHub machine that mentions that this port is used by ADB (Android Debug Bridge) but, differently from that one, this port is currently filtered. Nmap done: 1 IP address (1 host up ) scanned in 11.05 secondsĪs this is my first Android box, started researching about this freeciv service found. If you know the service/version, please submit the following fingerprint at : All addresses will be marked 'up' and scan times will be slower.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |