Anthem
Task 1: Website Analysis
What port is for the web server?
Let's scan the target using nmap
.
$ nmap -sC -sV 10.10.5.238
Starting Nmap 7.92 ( https://nmap.org ) at 2023-12-07 19:48 IST
Nmap scan report for 10.10.5.238
Host is up (0.14s latency).
Not shown: 998 filtered tcp ports (no-response)
PORT STATE SERVICE VERSION
80/tcp open http Microsoft HTTPAPI httpd 2.0 (SSDP/UPnP)
3389/tcp open ms-wbt-server Microsoft Terminal Services
| ssl-cert: Subject: commonName=WIN-LU09299160F
| Not valid before: 2023-12-06T14:18:23
|_Not valid after: 2024-06-06T14:18:23
|_ssl-date: 2023-12-07T14:20:35+00:00; +2s from scanner time.
| rdp-ntlm-info:
| Target_Name: WIN-LU09299160F
| NetBIOS_Domain_Name: WIN-LU09299160F
| NetBIOS_Computer_Name: WIN-LU09299160F
| DNS_Domain_Name: WIN-LU09299160F
| DNS_Computer_Name: WIN-LU09299160F
| Product_Version: 10.0.17763
|_ System_Time: 2023-12-07T14:19:28+00:00
Service Info: OS: Windows; CPE: cpe:/o:microsoft:windows
Host script results:
|_clock-skew: mean: 1s, deviation: 0s, median: 1s
Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 103.08 seconds
There are two open ports:
Port | Service |
---|---|
80 | http |
3389 | ms-wbt-server |
Answer
80
What port is for remote desktop service?
ms-wbt-server
is the remote desktop service that runs on port 3389.
Answer
3389
What is a possible password in one of the pages web crawlers check for?
The page that web crawlers check for is robots.txt
. Let's see if that has something of importance.
The password is mentioned along with the disallowed pages.
Answer
UmbracoIsTheBest!
What CMS is the website using?
We can find this answer on the /robots.txt
page as well.
The /umbraco/
page tells us that the CMS is Umbraco.
Answer
Umbraco
What is the domain of the website?
Let's visit the webpage of the target machine.
Nothing really important here.