Tracks-AD-Coder

AD
38k words
Nmap1234567891011121314151617181920212223242526272829303132333435└─$ sudo nmap -sS 10.10.11.207 -p- --min-rate=3000Starting Nmap 7.95 ( https://nmap.org ) at 2025-06-11 18:47 EDTWarning: 10.10.11.207 giving up on port because retransmission cap hit (10).Nmap scan report for 10.10.11.207Host is up (0.32s latency).Not shown: 65200 closed tcp ports (reset), 307 filtered tcp ports (no-response)PORT STATE SERVICE53/tcp open domain80/tcp open http88/tcp open kerberos-sec135/tcp o...

Tracks-cloud-Vessel

cloud
18k words
nmap12345678└─$ sudo nmap -sS 10.10.11.178 -p- --min-rate=3000 Nmap scan report for 10.10.11.178 Host is up (0.29s latency). Not shown: 65533 closed tcp ports (reset)PORT STATE SERVICE22/tcp open ssh 80/tcp open http UserTCP 80/web80唯一的功能页面就是login 还有一个contant,但是不会触发任何发包 login内可以注册以及修改密码,这里注册点也无法使用会直接跳报错页。 目录扫描1234...

Tracks-AD-APT

AD
25k words
Nmap12345└─$ sudo nmap -sS 10.10.10.213 -p- --min-rate=3000PORT STATE SERVICE80/tcp open http135/tcp open msrpc User80/http80 web,内容如下 整个web没有存在价值的东西,support页面的contact部分在提交请求时会跳转到 10.13.38.16这个ip 1https://10.13.38.16/contact-post.html 看源码这部分显示是个打包器的,这ip应该是打包时候的测试环境ip 135/tcp135端口是msrpc口子 这里用rpcmap解析下 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354└─$ impacket-rpcmap 'ncacn_ip_tcp:10.10.10.213[135]'Impacket v0...