A walkthrough
- Lookup the network for your virtual machine's NAT adapter with the
ifconfig
command. - Perform a host scan with the most common ports on the network (ex:
nmap -v -sN 10.0.0.1/24 -F
). - Note a webserver running on port 80, ssh on port 22, mysql on port 3306 and an unknown service on port 25565.
- Make a request to the webservice and notice it is an instance of phpBB, a discussion forum application.
- Notice the board's name is minecraft.
- Check the version numbers and search the web for it, no vulnerabilities exist by default in this version.