[Hack The Box] [Starting Point] [Tier 1] Ignition

TASK 1

Which service version is found to be running on port 80? nginx 1.14.2

TASK 2

What is the 3-digit HTTP status code returned when you visit http://{machine IP}/? 302

TASK 3

What is the virtual host name the webpage expects to be accessed by? ignition.htb

TASK 4

What is the full path to the file on a Linux computer that holds a local list of domain name to IP address pairs? /etc/hosts

TASK 5

What is the full URL to the Magento login page? http://ignition.htb/admin

TASK 6

What password provides access as admin to Magento? qwerty123

它的普通用户的密码要求。。

Magento官方的Admin密码要求,比普通用户的还要低。。。。

Configuring Admin Security

默认密码试了下不行

Default password list

由于没有找到有用的信息,卡了很久,最后去搜了别人的答案,原来这题无解,只是一个个试试,不过想了想,现实里这种情况其实很常见的,教你重新做人了这个任务。

我这里使用这SecList的密码本2020-200_most_used_passwords.txt,根据上面的要求,密码至少8位,且必须含有数字和字符,则可以筛选下:

sed -ri '/^.{,7}$/d' passwords.txt            # remove shorter than 8
sed -ri '/[0-9]+/!d' passwords.txt            # remove no numbers
sed -ri '/[a-zA-Z]+/!d' passwords.txt            # remove no letters

如果要作弊一下的话,通过HTB的页面提示,应该有9位,且结尾为3,则可以筛选出很少的结果

登录进去后就可以看到flag 了