┌──(mikannse㉿kali)-[~] └─$ sudo nmap --min-rate=10000 -p- 192.168.56.118 Starting Nmap 7.94SVN ( https://nmap.org ) at 2024-09-15 19:07 CST Nmap scan report for jangow.hub (192.168.56.118) Host is up (0.00043s latency). Not shown: 65533 filtered tcp ports (no-response) PORT STATE SERVICE 21/tcp open ftp 80/tcp open http MAC Address: 08:00:27:9F:53:41 (Oracle VirtualBox virtual NIC)
Nmap done: 1 IP address (1 host up) scanned in 13.40 seconds
┌──(mikannse㉿kali)-[~] └─$ sudo nmap -sT -sC -sV -O -p21,80 192.168.56.118 Starting Nmap 7.94SVN ( https://nmap.org ) at 2024-09-15 19:08 CST Nmap scan report for jangow.hub (192.168.56.118) Host is up (0.00067s latency).
PORT STATE SERVICE VERSION 21/tcp open ftp vsftpd 3.0.3 80/tcp open http Apache httpd 2.4.18 | http-ls: Volume / | SIZE TIME FILENAME | - 2021-06-10 18:05 site/ |_ |_http-server-header: Apache/2.4.18 (Ubuntu) |_http-title: Index of / MAC Address: 08:00:27:9F:53:41 (Oracle VirtualBox virtual NIC) Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port Aggressive OS guesses: Linux 3.10 - 4.11 (97%), Linux 3.16 - 4.6 (97%), Linux 3.2 - 4.9 (97%), Linux 4.4 (97%), Linux 3.13 (94%), Linux 4.2 (94%), Linux 3.13 - 3.16 (91%), OpenWrt Chaos Calmer 15.05 (Linux 3.18) or Designated Driver (Linux 4.1 or 4.4) (91%), Linux 4.10 (91%), Linux 5.1 (91%) No exact OS matches for host (test conditions non-ideal). Network Distance: 1 hop Service Info: Host: 127.0.0.1; OS: Unix
OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 15.45 seconds
Web
┌──(mikannse㉿kali)-[~/vulnhub/jangow] └─$ feroxbuster -u http://jangow.hub/ -w /usr/share/wordlists/SecLists/Discovery/Web-Content/directory-list-2.3-medium.txt -x rar,php,zip,sql,txt,html,bak,pdf --filter-status 404 -k ___ ___ __ __ __ __ __ ___ |__ |__ |__) |__) | / ` / \ \_/ | | \ |__ | |___ | \ | \ | \__, \__/ / \ | |__/ |___ by Ben "epi" Risher 🤓 ver: 2.10.4 ───────────────────────────┬────────────────────── 🎯 Target Url │ http://jangow.hub/ 🚀 Threads │ 50 📖 Wordlist │ /usr/share/wordlists/SecLists/Discovery/Web-Content/directory-list-2.3-medium.txt 💢 Status Code Filters │ [404] 💥 Timeout (secs) │ 7 🦡 User-Agent │ feroxbuster/2.10.4 💉 Config File │ /etc/feroxbuster/ferox-config.toml 🔎 Extract Links │ true 💲 Extensions │ [rar, php, zip, sql, txt, html, bak, pdf] 🏁 HTTP methods │ [GET] 🔓 Insecure │ true 🔃 Recursion Depth │ 4 ───────────────────────────┴────────────────────── 🏁 Press [ENTER] to use the Scan Management Menu™ ────────────────────────────────────────────────── 403 GET 9l 28w 275c Auto-filtering found 404-like response and created new filter; toggle off with --dont-filter 404 GET 9l 31w 272c Auto-filtering found 404-like response and created new filter; toggle off with --dont-filter 301 GET 9l 28w 307c http://jangow.hub/site => http://jangow.hub/site/ 200 GET 106l 659w 26989c http://jangow.hub/site/assets/img/demo-image-01.jpg 200 GET 54l 134w 1644c http://jangow.hub/site/js/scripts.js 200 GET 8l 29w 28898c http://jangow.hub/site/assets/favicon.ico 200 GET 679l 4637w 425261c http://jangow.hub/site/assets/img/ipad.png 200 GET 11253l 21663w 207746c http://jangow.hub/site/css/styles.css 200 GET 1l 0w 1c http://jangow.hub/site/busque.php 200 GET 949l 4824w 385662c http://jangow.hub/site/assets/img/bg-masthead.jpg 200 GET 492l 2733w 186437c http://jangow.hub/site/assets/img/demo-image-02.jpg 301 GET 9l 28w 314c http://jangow.hub/site/assets => http://jangow.hub/site/assets/ 301 GET 9l 28w 311c http://jangow.hub/site/css => http://jangow.hub/site/css/ 301 GET 9l 28w 317c http://jangow.hub/site/wordpress => http://jangow.hub/site/wordpress/ 200 GET 173l 663w 10190c http://jangow.hub/site/index.html 200 GET 2608l 13994w 956051c http://jangow.hub/site/assets/img/bg-signup.jpg 301 GET 9l 28w 310c http://jangow.hub/site/js => http://jangow.hub/site/js/ 200 GET 173l 663w 10190c http://jangow.hub/site/wordpress/index.html 200 GET 1l 10w 87c http://jangow.hub/site/wordpress/config.php