1- RECON

nmap -p- -A -T4 10.0.2.6 [ machine ip ]

========

open Ports

21/tcp open ftp vsftpd 3.0.3

22/tcp open ssh OpenSSH 7.9p1 Debian 10+deb10u2 (protocol 2.0)

80/tcp open http Apache httpd 2.4.38 ((Debian)

=========

trying now to connect with ftp using anonymous:anonymous credentials

and after go into ftp , make ls and find note.txt file ,

to get it our machine use the get command for that

now i will trying to read this file and this is content :

and this is a sensitive information

Hello Heath !
Grimmie has setup the test website for the new academy.
I told him not to use the same password everywhere, he will change it ASAP.

I couldn't create a user via the admin panel, so instead I inserted directly into the database with the following command:

INSERT INTO `students` (`StudentRegno`, `studentPhoto`, `password`, `studentName`, `pincode`, `session`, `department`, `semester`, `cgpa`, `creationdate`, `updationDate`) VALUES
('10201321', '', 'cd73502828457d15655bbd7a63fb0bc8', 'Rum Ham', '777777', '', '', '', '7.60', '2021-05-29 14:36:56', '');

The StudentRegno number is what you use for login.

Le me know what you think of this open-source project, it's from 2020 so it should be secure... right ?
We can always adapt it to our needs.

-jdelta

we have a sensitive information here let’s to sum up this to find most important information

• StudentRegno: '10201321'
• studentPhoto: ''
• password: 'cd73502828457d15655bbd7a63fb0bc8'