There are problems, environment and analysis , I want a private letter , Not in vain ！

Application Service Vulnerability scanning and utilization

1、 Use command nmap Detect the service version information of the target aircraft , Use the parameters you need as FLAG Submit ;

flag：sV

2、 Access the target system through the above port and detect hidden pages , Sensitive files that will be found 、 The directory name is used as FLAG（ form ：[ Sensitive files or directories 1, Sensitive files or directories 2…, Sensitive files or directories n]） Submit ;

flag：[ssh,robots,txt]

3、 Download the available private key and authentication keyword files through the above sensitive files or directories , Use the private key file name and the authentication keyword file name as FLAG（ form ：[ Private key filename , Authentication keyword file name ]） Submit ;

flag：[id_rsa,authorized_keys]

4、 Find the user name used to log in to the target server in the authentication keyword file , Use the user name as FLAG Submit ;