Category: Network Points: 100 Description:
My manager lives at 10.13.37.21. Any guest is always welcome. But he has a secret. Can you find it out?
The following solution involves some random guessing, hunches, and curiosity.
The statement “Any guest is always welcome” is a hint about a guest or public account of perhaps a user account.
After testing some combinations of username: guest and password: <blank> or welcome or guest to the login form that’s displayed when you open http://10.13.37.21/ from a web browser, we switched to testing it for SSH login. We ran ssh [email protected] and it seems that an SSH daemon is actually up. After a few connection attempts, we discovered that the password is also guest.
Navigating and listing the directory of /var/www revealed an html folder, and ls /var/www/html reveals some folders and an index.php file. Running cat /var/www/html/index.php reveals some interesting PHP code at the top of the file.
One line reads:
The secret is behind 0f388689dc4728cfde0de9a1ee47c8d3 :)
Googling 0f388689dc4728cfde0de9a1ee47c8d3 reveals that it is the MD5 hash of the string ididyourmom, which is the flag.