APT | Notion

Recon

IP address :10.10.10.213

PORT    STATE SERVICE
80/tcp  open  http
135/tcp open  msrpc

PORT    STATE SERVICE VERSION
80/tcp  open  http    Microsoft IIS httpd 10.0
|_http-title: Gigantic Hosting | Home
|_http-server-header: Microsoft-IIS/10.0
| http-methods: 
|_  Potentially risky methods: TRACE
135/tcp open  msrpc   Microsoft Windows RPC
Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
Device type: general purpose
Running (JUST GUESSING): Microsoft Windows 2016 (88%)
OS CPE: cpe:/o:microsoft:windows_server_2016
Aggressive OS guesses: Microsoft Windows Server 2016 (88%)
No exact OS matches for host (test conditions non-ideal).
Service Info: OS: Windows; CPE: cpe:/o:microsoft:windows

PORT    STATE SERVICE
80/tcp  open  http
|_http-stored-xss: Couldn't find any stored XSS vulnerabilities.
|_http-dombased-xss: Couldn't find any DOM based XSS.
|_http-csrf: Couldn't find any CSRF vulnerabilities.
135/tcp open  msrpc

看一下80

Untitled

扫一下目录

sudo gobuster dir -u <http://10.10.10.213> -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt -t 50

Untitled

没有看到有用目录

Untitled

HTTrack Website Copier google 一下

Untitled

利用不了

Untitled