![]() LDAP also shows the domain outdated.htb, which is consistent with the rest. Nmap also identified the hostname on TCP 25 and dc.outdated.htb and outdated.htb on the TLS certificated on the LDAP ports (636, 3268, 3269). Based on the IIS version, the host is likely running Windows 10 / Server 2016 or later. ![]() The combination of ports make it looks like a Windows Domain Controller, along with TCP 85, which are IIS ports (some Googling will show they are WSUS associated). Nmap done: 1 IP address (1 host up) scanned in 177.45 seconds Service Info: Hosts:, DC OS: Windows CPE: cpe:/o:microsoft:windows If you know the service/version, please submit the following fingerprint at : NET Message Framingġ service unrecognized despite returning data. |_http-server-header: Microsoft-HTTPAPI/2.0Ĩ530/tcp open http Microsoft IIS httpd 10.0ĩ389/tcp open mc-nmf. |_ssl-date: T07:03:40+00:00 +8h20m04s from scanner time.ģ269/tcp open ssl/ldap Microsoft Windows Active Directory LDAP (Domain: outdated.htb0., Site: Default-First-Site-Name)ĥ985/tcp open http Microsoft HTTPAPI httpd 2.0 (SSDP/UPnP) |_ssl-date: T07:03:38+00:00 +8h20m03s from scanner time.ģ268/tcp open ldap Microsoft Windows Active Directory LDAP (Domain: outdated.htb0., Site: Default-First-Site-Name) |_ssl-date: T07:03:39+00:00 +8h20m04s from scanner time.ĥ93/tcp open ncacn_http Microsoft Windows RPC over HTTP 1.0Ħ36/tcp open ssl/ldap Microsoft Windows Active Directory LDAP (Domain: outdated.htb0., Site: Default-First-Site-Name) | Subject Alternative Name: DNS:DC.outdated.htb, DNS:outdated.htb, DNS:OUTDATED |_ 211 DATA HELO EHLO MAIL NOOP QUIT RCPT RSET SAML TURN VRFYĨ8/tcp open kerberos-sec Microsoft Windows Kerberos (server time: 07:00:49Z)ġ39/tcp open netbios-ssn Microsoft Windows netbios-ssnģ89/tcp open ldap Microsoft Windows Active Directory LDAP (Domain: outdated.htb0., Site: Default-First-Site-Name) | smtp-commands:, SIZE 20480000, AUTH LOGIN, HELP, ![]() Nmap scan report for dc.outdated.htb (10.10.11.175)
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |