Filter Contents

HTB Content Challenges
1

Can anyone help? Please I’ve been on these questions for days now 1.Determine what user the ProFTPd server is running under. Submit the username as the answer.

2.Use cURL from your Pwnbox (not the target machine) to obtain the source code of the “https://www.inlanefreight.com” website and filter all unique paths of that domain. Submit the number of these paths as the answer.

thanks to you all for your assistance

2

.

3

Type your comment> @DarkRaider007 said:

1.proftpd

Thanks… It worked.

4

Did you solve the last question related to the curl to find the unique paths?

5

Not yet still try to find a way around it.

6

can you give me a clue for the part where you have to figure out what user the proftp server is running under ?

7

@Su8Z3r0 said:
can you give me a clue for the part where you have to figure out what user the proftp server is running under ?

For example:

mark:x:1001:1001:mark,:/home/mark:/bin/bash
[–] - [–] [–] [-----] [--------] [--------]
| | | | | | |
| | | | | | ±> 7. Login shell
| | | | | ±---------> 6. Home directory
| | | | ±-------------------> 5. GECOS
| | | ±-------------------------> 4. GID
| | ±------------------------------> 3. UID
| ±----------------------------------> 2. Password
±---------------------------------------> 1. UsernameType

8

use ps command : ps aux → list all of process are running then use grep to find “proftpd”
This will solve :
—>ps aux | grep “proftpd”
you will see the username column is the first column on the left

4 Likes
9

you have to look under the file for username
setps :

  1. cd /etc/proftpd
  2. cat proftpd.conf
  3. then you will see the user and group name

by the way the answer is proftpd but i want you to look under the file so you can learn that . thank you!

10

why do i find the user name really

11

Because that’s the challenge LoL

12

image
image755×378 153 KB

Run command “cat /etc/proftpd/proftpd.conf | grep proftpd”. The answer is shown in the picture.

13

TBH I’ve just been using htop, filtered for proftbd and got the answer (if you activate tree view after filtering it’ll look a bit more obvious)
It solved my “problem” pretty well but i guess I should’ve been using the commands :sweat_smile:

14

Use this command for the question number two: curl https://www.inlanefreight.com | tr " " "\n" | cut -d"'" -f2 | cut -d'"' -f2 | grep www.inlanefreight.com | sort -u | wc -l

15

cat /etc/passwd | grep “false|nologin” | grep proftpd

16

List all running processes and then use ‘grep’ to filter out the ProFTPd process.
: ps aux | grep -i ProFTPd

17

Command for Answer :

ps aux | grep -i proftpd | awk '{print $1}'

Answer : proftpd

18

For the second Question you can use the command below

The below command is going to save the curl output into a file named t

curl https://www.inlanefreight.com -o t

After saving the file we are going to perform the filtering the complete filtering command is as follows

cat t | tr " " "\n" | sed 's/"/\n/g' | sed "s/'/\n/g" | grep 'https://www\.inlanefreight\.com' | sort -u | wc -l