Why do you need all of this if passwords are already provided?ĭo not believe me? Just take a closer look at directory contents: The third logical step should be a search for exploits to get passwords/shells on a remote machine. php files in the directory and some googling I figured out that the host application is DMA Radius Manager used by ISPs to manage client’s network traffic.įiguring out what is hosted on remote system Judging by the contents of served directory it’s obvious that some PHP application is hosted on that system.Īfter spending some time looking at. HTTP Server serves contents of a directory I was surprised because I got a response - the remote system served contents of some directory It’s a time consuming and sometimes boring process on which I didn’t want to waste my time, but I tried to open the IP in the browser and I was really surprised! The second logical step should be an enumeration of a host system in order to understand what services are running on remote system, what ports are opened etc. Interesting stuff, you can even see Kucove if you zoom out far enough Unintended host enumeration
You can clearly see city, region and country of origin, as well as other useful information. More information about IP 79.106.35.194 from
The first logical step was to get some more information about IP address (especially considering the fact that I never heard of a city called Kucove before). Do not try to repeat the steps described below! It might be considered illegal in your country
0 kommentar(er)
