Scribd Logo
Upload

Welcome to Scribd!

  • CEH Lab Crocodile

    Uploaded by

    rowen prather
    7 views3 pages
    An anonymous FTP login was discovered on a target system through Nmap scanning. This allowed access to usernames and passwords stored in the FTP directory. One username and password combination provided administrative access to the website. The security issue was the anonymous FTP login, so reconfiguring FTP access and changing passwords was suggested.

    Original Description:

    Original Title

    CEH lab crocodile

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    An anonymous FTP login was discovered on a target system through Nmap scanning. This allowed access to usernames and passwords stored in the FTP directory. One username and password combination provided administrative access to the website. The security issue was the anonymous FTP login, so reconfiguring FTP access and changing passwords was suggested.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    7 views3 pages

    CEH Lab Crocodile

    Uploaded by

    rowen prather
    An anonymous FTP login was discovered on a target system through Nmap scanning. This allowed access to usernames and passwords stored in the FTP directory. One username and password combination provided administrative access to the website. The security issue was the anonymous FTP login, so reconfiguring FTP access and changing passwords was suggested.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 3

    CEH lab crocodile

    By rowen prather
    First we nmap the target and get there is open port with file transfer protocol running on it.

    From that information we try to get a foothold by loging into the ftp protocol through the anonymous
    account with no password. After this I am able to get both the passwords and usernames, which I am
    able to login using the usernames and passwords till I gain access to the website as an admin.

    The main issue with security here is leaving the anonymous login to ftp protocol. So I would suggest
    reconfiguring the ftp protocol and changing the passwords for the users and

    You might also like