Hack The Box : Expressway
Hi guys. Today I will do a simple writeup on the Hack The Box machine which is now retired named 'Expressway'. It is an Easy difficulty machine. I did this box during active period and since it is retired, I decided to put it here. 1) First step is to always nmap the box to search for open ports. the usual command that I use is nmap -sS -sV -sC -o <name of file>.txt <ip> Initial scan shows nothing. In this case, it is always good to check UDP ports as well. 2) Scanning for UDP ports Now we see some open port. From a quick Google search, it is found that port 500 is for IPSec. "IPsec is widely recognized as the principal technology for securing communications between networks (LAN-to-LAN) and from remote users to the network gateway (remote access), serving as the backbone for enterprise VPN solutions." Upon further research, I stumbled upon a useful blog on how to exploit IPSec. https://www.verylazytech.com/network-pentesting/ipsec-ike-vpn-port-500-udp Th...