HTB Meow (Telnet)

As the first box, this box helps with the set up of the machine.

I started with pinging the host to make sure it was spawned and alive.

Next, I ran an aggressive nmap scan against the host. Telnet appears to be open.

Make sure to use the IP of your machine. In my case, it’s 10.129.1.17. Yours may be different.

nmap -sV -A 10.129.1.17

I proceeded to try to set up a telnet connection. It didn’t work. I searched for a while to see if I was connecting wrong. It turns out that the box was just having an issue. I rebooted the box and tried again. Still no luck. I decided to use Metasploit instead. You can spin up Metasploit with the msfconsole command. Then I searched for telnet and found a scanner module that I can use.

use auxiliary/scanner/telnet/telnet_login

Then I set the options with the set command. I tried multiple common username/password combinations until I found the correct one. root/password

set rhosts 10.129.1.17

set username root

set password password

Tip: show options allows you to view options required

After all the options are filled out, run it to log into the box. The flag.txt is found in the home directory.

--

--

--

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

How to Build Java Applications Today: August 16, 2021

Docker in 5 Minutes

Micro Services- What are they?

CODING STANDARDS AND PRACTICES

Bits, Bytes, Building With Binary

Multi-core Programming

A beginner’s guide to creating your first Python website using Flask, AWS EC2 & Elastic Beanstalk

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
ErvinTista

ErvinTista

More from Medium

Relevant — THM Walkthrough

HackTheBox — Forge Writeup

Vulnhub Series →DC-1

Hack the Box — Mini Line