Crocodile

---

title: Crocodile date: 2025-06-06 author: Nicos draft: false tags: section: “HTB” categories: [“HTB”]

Task 1

What Nmap scanning switch employs the use of default scripts during a scan? ![[Pasted image 20250606180011.png]]

Task 2 What service version is found to be running on port 21?

![[Pasted image 20250606180041.png]]

Task 3 What FTP code is returned to us for the “Anonymous FTP login allowed” message?

![[Pasted image 20250606180154.png]]

Task 4 After connecting to the FTP server using the ftp client, what username do we provide when prompted to log in anonymously? ![[Pasted image 20250606180708.png]]

Task 5 After connecting to the FTP server anonymously, what command can we use to download the files we find on the FTP server?

![[Pasted image 20250606180934.png]]

Task 6 What is one of the higher-privilege sounding usernames in ‘allowed.userlist’ that we download from the FTP server?

![[Pasted image 20250606181046.png]]

Task 7 What version of Apache HTTP Server is running on the target host?

![[Pasted image 20250606181423.png]]

Task 8 What switch can we use with Gobuster to specify we are looking for specific filetypes?

![[Pasted image 20250606181856.png]] ![[Pasted image 20250606181900.png]]

Task 9 Which PHP file can we identify with directory brute force that will provide the opportunity to authenticate to the web service? ![[Pasted image 20250606182143.png]] ![[Pasted image 20250606182547.png]]

Submit Flag Submit root flag

![[Pasted image 20250606183629.png]] ![[Pasted image 20250606183554.png]]