Hackthebox — Doctor

Jun 10, 2022


Disclaimer: I pwned the box on a different platform. The pwnbox and own vm machine? Why, due to accessibility and internet connection problems.

Ran an nmap scan on the machine by using the command.

nmap -sC -sV IP(thisMayVaries).

The open ports are 22, 80, and 8089

22: ssh

80: http

8089: Default port on Splunk (SIEM)

Viewed the website by indicating the IP address on the browser.

I am not familiar on the Splunk Architecture and found a good source for this type of service under the machine of Doctor.

Reviewing the source code / view page source found an interesting email address / url to ingest on the /ec