Vulnhub HarryPotter: Aragog write-up!!

nmap open ports
nmap service version detection
gobuster result
metasploit scanner showing wp-file-manager v. 6.0
Reverse shell
db-username and password
backup.sh file
wordpress password hash for wp-admin
john cracked the password hash for wp-admin
hagrid98 user
the final flag

References:

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

HIPAA-Compliant File Sharing Workflow: A Checklist for SaaS

The Key to keeping secrets in the Cloud

IOT internet of things, is that really a “thing”?

Discord Safety Boost

Surprisingly, PPATK Finds an Illegal Flow of Binomo Funds Abroad

Blueprinting The Target Part — 1

Walkthrough : InsecureBankv2

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Vishal

Vishal

More from Medium

Dockers — Build your first Image — Tutorial 2

Host Blazor on ECS Part 2 —Configure Load Balancer with SSL

ACM — request certificate

A reverse proxy server accepts a request from the client, forwards it to a backend server, and…

GMV Forecasting