1. Task
Task1
Q: Directory Brute-forcing is a technique used to check a lot of paths on a web server to find hidden pages. Which is another name for this? (i) Local File Inclusion, (ii) dir busting, (iii) hash cracking.
A: dir busting
Task2
Q: What switch do we use for nmap's scan to specify that we want to perform version detection
A: -sV
Task3
Q: What does Nmap report is the service identified as running on port 80/tcp?
A:http
Task4
Q: What server name and version of service is running on port 80/tcp?
A: nginx 1.14.2
Task5
Q: What switch do we use to specify to Gobuster we want to perform dir busting specifically?
A: dir
Task6
Q: When using gobuster to dir bust, what switch do we add to make sure it finds PHP pages?
A:-x php
Basic Guide
dirbuster list data
Task7
Q: What page is found during our dir busting activities?
A: admin.php
Task8
Q: What is the HTTP status code reported by Gobuster for the discovered page?
A: 200
https://github.com/alibaba/nginx-admin-plus/blob/master/docs/nginx-admin-plus-manual.md
ngnix's default id/password is admin/admin
