Git Happens

Scanning

Lets run scans to find open ports and services

Enumeration

Lets check the webserver out.

We have a login page. In the nmap scan we found the /.git/ directory, lets check it out.

We have a bunch of directories.

Now we can manually look at all the directories, or we can use a tool called GitTools. Lets download it.

Now lets download the directories onto out machine and call it clone.

Now we can see all the directories on our machine

Here, lets look at the logs as they are the most interesting

Looking at all of them , the highlighted one is the most interesting as it might show us interesting information about the login page. Lets look at it in more detail

Scrolling to the end of the file, we find the flag.

Last updated