Question: Hydra (https://github.com/vanhauser-thc/thc-hydra ) starting at 2022-08-29 05:06:15 [WARNING] Many SSH configurations limit the numbe r of parallel tasks, it is recommended to reduce the

the numbe r of parallel tasks, it is recommended to reduce the

tasks: use -t 4 [WARNING] Restorefile (you have 10 seconds to abo

rt... (use option -I to skip waiting)) from a pre vious session

found, to prevent overwriting, ./hy dra.restore [DATA] max 1 task per 1

server, overall 1 task, 1 login try (1:1/p:1), ~1 try per task

Hydra (https://github.com/vanhauser-thc/thc-hydra ) starting at 2022-08-29 05:06:15 [WARNING] Many SSH configurations limit the numbe r of parallel tasks, it is recommended to reduce the tasks: use -t 4 [WARNING] Restorefile (you have 10 seconds to abo rt... (use option -I to skip waiting)) from a pre vious session found, to prevent overwriting, ./hy dra.restore [DATA] max 1 task per 1 server, overall 1 task, 1 login try (1:1/p:1), ~1 try per task [DATA] attacking ssh://10.10.218.7:22/ [22][ssh] host: 10.10.218.7 rd: armando login: jan passwo 1 of 1 target successfully completed, 1 valid pas sword found Hydra (https://github.com/vanhauser-thc/thc-hydra ) finished at 2022-08-29 05:06:26 root@kali:~# root@kali:~# nmap -sV 10.10.218.7 Starting Nmap 7.80 ( https://nmap.org) at 2022-08-29 03:53 UTC Stats: 0:02:22 elapsed; hosts completed (1 up), 1 undergoing Service Scan Service scan Timing: About 66.67% done; ETC: 03:56 (0:01:11 remaining) Nmap scan report for ip-10-10-218-7.eu-west-1.compute.internal (10.10.218.7) Host is up (0.00089s latency). Not shown: 994 closed ports PORT 22/tcp .0) STATE SERVICE open ssh open http 80/tcp VERSION OpenSSH 7.2p2 Ubuntu 4ubuntu2.4 (Ubuntu Linux; protocol 2 Apache httpd 2.4.18 (Ubuntu)) 139/tcp open netbios-ssn Samba smbd 3.X - 4.X (workgroup: WORKGROUP) netbios-ssn Samba smbd 3.X - 4.X (workgroup: WORKGROUP) 445/tcp open 8009/tcp open ajp13? 8080/tcp open http-proxy? MAC Address: 02:8F:96:8F:27:B9 (Unknown) Service Info: Host: BASIC2; OS: Linux; CPE: cpe:/o: linux: linux_kernel Service detection performed. Please report any incorrect results at https://nmap.org /submit/ . Nmap done: 1 IP address (1 host up) scanned in 199.98 seconds root@kali:~# START_TIME: Mon Aug 29 04:00:48 2022 URL_BASE: http://10.10.218.7/ WORDLIST_FILES: /usr/share/dirb/wordlist s/common.txt metasploit framework Burpsuite GENERATED WORDS: 4612 Scanning URL: http://10.10.218.7/ Home hashcat DIRECTORY: http://10.10.218.7/develo pment/ + http://10.10.218.7/index.html (CODE:20 0|SIZE:158) + http://10.10.218.7/server-status (CODE :403|SIZE:299) Entering directory: http://10.10.21 8.7/development/ (!) WARNING: Directory IS LISTABLE. No n eed to scan it. (Use mode '-w' if you want to scan i t anyway) PEASS END_TIME: Mon Aug 29 04:00:51 2022 DOWNLOADED: 4612 - FOUND: 2 root@kali:~# [I] Found new SID: S-1-5-32 [+] Enumerating users using SID S-1-22-1 and logon username S-1-22-1-1000 Unix User\kay (Local User) S-1-22-1-1001 Unix User\jan (Local User) [+] Enumerating users using SID S-1-5-21-2853212168- 2008227510-3551253869 and logon username d " passwor S-1-5-21-2853212168-2008227510-3551253869-500 *unkno unknown+ (8) 1 password What is the name of the hidden directory on the web server(enter name without/)? development User brute-forcing to find the username & password No answer needed What is the username? jan What is the password? armando What service do you use to access the server(answer in abbreviation in all caps)? SSH Security Weaknesses Outdated services Weak Passwords No Account Lockout

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer

Step: 1 Unlock blur-text-image

Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock

Step: 3 Unlock

Students Have Also Explored These Related Computer Network Questions!

Tobi owns a perpetuity that will pay $1,500 a year, starting one year from now. He offers to sell you all the payments remaining after the first 25 payments have been paid. What price should you...

The following additional information is available for the Dr. Ivan and Irene Incisor family from Chapters 1-5. Ivan's grandfather died and left a portfolio of municipal bonds. In 2012, they pay Ivan...

15. Consider the following regular expression: [az]+((-|_) [az]+){0,1}(\. [0-9]*)? Briefly explain why each of the strings from the following set that would or would not be matched by the above...

Doug Robinson and Dante are considering the possibility of opening their own manufacturing facility. They expect first-year sales to be $800,000, and they feel that their variable costs will be...

Describe and illustrate the difference between an accrual and a deferral.

Dividend income in the profit or loss of a parent company should be eliminated against dividend payable in the statement of financial position of a subsidiary company. True/False

Transparency and disclosure: How did the evaluation make complete descriptions of findings, limitations, and conclusions available to all stakeholders, unless doing so would violate legal and...

Refer to Problem 2-28 at the end of Chapter 2. Assume that the capital acquisitions in that problem were made at the beginning of fiscal year 2012. It is now the end of fiscal year 2014. Prepare a...

Questions 26 - 30 pertain to the financial data of Anycorp, Inc., which recently hired you as Controller. Anycorp has been experiencing rapid growth and is negotiating with EasyBank for a new larger...

Murray Corporations stock is owned by about 1,000 shareholders, none of whom own more than 1% of the outstanding shares. Pursuant to a tender offer, Said purchased all the Murray stock for $7.5...

A worker views leisure and income as "goods" and has an opportunity to work at an hourly wage of $16 per hour. a. The worker's opportunity set in a given 24-hour period is illustrated below.What are...

Question 26 [2 points} Using expansionary policies to combat a recession would 0 increase a budget deficit. 0 increase a budget surplus. 0 decrease discretionary spending. 0 increase federal revenue....

To analyze a complex negotiation (work, personal, or historical) To apply negotiation course concepts in your analysis. These objectives, while straightforward, are critical to your learning....

What Would You Do? Michael Michael is a student in your fifth-grade class. His father passed away in an automobile accident last year. Before his father's death Michael always did well in school and...

Exercise 8-23 (Algo) Preparing a balance sheet LO P1, P3, P4 Selected accounts from Gregor Company's adjusted trial balance for the year ended December 31 follow. Prepare a classified balance sheet....

What is a Python library? Choose the best answer. More than one Python modules, which are typically publicly available, that collectively create useful tools for programming SAVED One or more Python...

Three forces with magnitudes of 70pounds, 40 pounds, and 60 pounds act on an object at angles of 30, 45, and 135, respectively, with the positive x-axis. Find the direction and magnitude of the...

79. An urn contains n white and m black balls that are removed one at a time. If n > m, show that the probability that there are always more white than black balls in the urn (until, of course, the...

95. For the left skip free random walk of Section 3.6.6 let = P(Sn 0 for all n) be the probability that the walk is never positive. Find when E[Xi] Answered: 1 week ago

80. A coin that comes up heads with probability p is flipped n consecutive times. What is the probability that starting with the first flip there are always more heads than tails that have appeared?