Task
- Which service version is found to be running on port 80?
- nginx 1.14.2
- What is the 3-digit HTTP status code returned when you visit http://{machine IP}/?
- 302
- What is the virtual host name the webpage expects to be accessed by?
- ignition.htb
- What is the full path to the file on a Linux computer that holds a local list of domain name to IP address pairs?
- /etc/hosts
- Use a tool to brute force directories on the webserver. What is the full URL to the Magento login page?
- Look up the password requirements for Magento and also try searching for the most common passwords of 2023. Which password provides access to the admin account?
- qwerty123
- Submit root flag
- Root flag owned
Write Up
`nmap -p- -sV [IP]`
http://10.129.1.27 로 웹에 접속하면 http://ignition.htb 로 redirect되고 DNS문제가 발생한다.
/etc/hosts 에 등록을 해준 다음 웹 사이트에 다시 접속을 시도해보면 아래와 같이 잘 접속됨을 확인할 수 있다.
음. 디렉토리 스캔을 돌려보겠다.
admin 경로를 확인했고 웹사이트에서 해당 경로에 접속을 시도해보았다.
로그인화면 등장. 비밀번호 크래커를 쓰거나 아래 링크를 참고하면 좋을 것 같다.
https://community.spiceworks.com/t/most-common-passwords-of-2023-the-top-10/963430
Most common passwords of 2023: The top 10
It’s with great pride that I can tell you that I personally use none of these passwords in the top 10 list! There’s more background and more info here, including stats on birth years, sports team, names, etc.: https://cybernews.com/best-password-manage
community.spiceworks.com
admin : qwerty123 를 입력하면 로그인이된다.
'HackTheBox' 카테고리의 다른 글
| [Tier1] Bike (SSTI) (0) | 2026.04.04 |
|---|---|
| [Tier1] Funnel (tunneling, postgresql) (0) | 2026.04.04 |
| [Tier1] Three (wfuzz, s3, php web shell) (0) | 2026.04.04 |
| [Tier1] Responder (LFI, RFI, NTLM) (0) | 2026.04.04 |
| [Tier1] Crocodile (gobuster) (0) | 2026.04.04 |