🚨 R1nzler

Intentions

1 min read

Machine: https://app.hackthebox.com/machines/Intentions

Reconnaissance

Port Scanning

  • As always lets use nmap in order to get the open port and versiones
nmap -p- -sS -n -Pn 10.10.11.220 --min-rate 5000
nmap -p22,80 -sVC -n -Pn 10.10.11.220 --min-rate 5000

Cosas para analizar

  • De donde sale esto: ')/**/UNION/**/SELECT/**/1,2,3,4,5-- cat ./app/Http/Controllers/GalleryController.php

Graph View