Open TCP port exploit with MSFConsole

as a college task I have to exploit a web service that my teacher has set up. But I’m clueless on how to proceed. After I find how to exploit it I have to leave a text message at “the place that is accessible to everyone by default” as he said.

I used nmap on my console to identify the open ports and I got this two:

PORT     STATE SERVICE
2222/tcp open  EtherNetIP-1
8083/tcp open  us-srv

I do believe that I have to exploit the 8083 port but so far I found nothing that can help and I’m guessing that I have to leave this message on the Apache page that can be accessed by using the IP and this open door, but I have no idea how to do it. Can someone help me?

docker – redirect /my-service requests to custom port on nginx

I’m trying to set up a nginx image that redirects requests depending on a url to a service port.
I’m using docker-compose and this is my docker-compose.yml:

version: '3.3'

services:

  nginx:
    image: nginx:latest
    build: .
    container_name: nginx
    depends_on:
        - service-1
    ports:
      - "80:80"

  service-1:
    image: dockerhub/image:latest
    container_name: service-1
    ports:
      - "8080:8080"
    restart: on-failure

The dockerfile used to build nginx contains the following:

FROM nginx:latest
COPY ./nginx-html-template/ /usr/share/nginx/html/
COPY ./nginx.conf /etc/nginx/conf.d/nginx.conf
EXPOSE 80
CMD ["nginx", "-g", "daemon off;", "-c", "/etc/nginx/nginx.conf"]

and last but not least the nginx.config:

server {
    listen [::]:80;
    listen 80 default_server;
    server_name localhost;

    location / {
            root /usr/share/nginx/html;
            index index.html index.htm;
            try_files $uri $uri/ =404;
    }

    location /service-1 {
        proxy_pass http://service-1:8080/;
     }
}

if I hit localhost/service-1 I would expect nginx to redirect the request to port 8080. But instead I get a 404. If instead I hit localhost:8080 then it works fine. What am I doing wrong? Thanks in advance

nginx – Setup SSL on Public URL and Admin Dashboard of an app running on port 9000

I seem to have a problem configuring SSL on an app on a subdomain, only that I don’t know how to fix them:

  1. I have a web app running on http://mysub.domain.com:9000
  2. This url is the admin dashboard of the app
  3. This app shoots email with public facing URLs like http://mysub.domain.com:9000/xxx/xxx/xxx (which lead to an action within my app)
  4. The mysub.domain.com is SSL enabled and loads with SSL but the moment the port (9000) is added it returns error page and I only have access to it via http
  5. The problem : 1 – port is visible to public and 2 – the URL shows insecure (when clicked by users it opens with port)
  6. The solution required : 1 – port to be removed without the action of the URL to be impacted and the same URL needs to be served on SSL

I have linux 18/postgres 12 and apache (webserver) + nginx (reverse proxy) running on my server.

Any help is appreciated. Pls also help with the name of the file to be edited.

tablet – Transplant USB C port to Samsung Tab S T700?

I am buying a Samsung Tab S 8.4″ T700. I was wondering if there were a part to replace the micro USB port with a USB C port. Poking around it looks like there are lots of T700/T705/T100 replacement micro USB ports, but it could just may to be too have gotten a C option.

Thanks for your help, have a nice weekend, and stay safe!

bodHOST.com: Dedicated Servers at just $85/mo | 1Gbps Port | DDoS Protected | NewProxyLists

About bodHOST

bodHOST is a business solutions provider offering solutions ranging from Managed Dedicated Servers and Custom Server Solutions to VPS hosting and Remote Backups backed with 24×7 Support. All solutions are supported with robust infrastructure and enhanced by the latest technologies and assurances such as SSD for enhanced speed, 99.99% uptime, 24/7 security monitoring, and DDoS protection.

bodHOST has come up with Special High-Performance Dedicated Server Deal at just $85/mo.

HURRY UP! Grab this limited time offer for your Personal or Business use, before its gone!

Features

  • Managed Server
  • Secure Environment
  • Application Optimized
  • Quick Provisioning
  • Optional Firewall

Intel Xeon E3-1230v3

  • 16 GB RAM
  • 2x1TB HDD
  • RAID 1
  • 1Gbps Port
  • Linux/Windows

Price – $85/mo | Order Now

Our Special Promotion is valid only until the server stock lasts. So place an order right now and grab a fully managed dedicated server at a very reasonable price.

For a full list of Dedicated Hosting features, visit: https://www.bodhost.com/managed-dedicated-servers

In case you have any questions, you can contact our sales department by initiating a chat or by dropping an email to [email protected] or call us at 8443245054.

 

How to repair broken HDMI port on MacBook

I have a MacBook Pro (Retina, 13-inch, Early 2015). I’m happy with it but recently I started having problems connecting my external screen via HDMI.

Since a few days ago, I can’t make it work anymore at all and I found the problem: Looking into the HDMI connector at my MacBook, I can see that one of the silver wires of the connector is “bent away”, i.e. instead of being flat and aligned with all the others, it’s bent toward the rear end of the connector. No wonder the screen doesn’t work.

I believe the HDMI port is botched for good, because if I somehow managed to move those connectors down, plugging in the cable would just move them out of place again.

Hence: Is it possible to swap the HDMI port by myself? I have no problem opening the MacBook and if it’s just a tedious task, I can do it.
If that port is properly mounted to the mainboard and cannot be swapped by itself, how much would a swap roughly be at an AppleStore (Germany)?

Here’s a photo: photo of port

penetration test – I had discovered unusual open port in my target (like 2085) What can i do to penetrate my target?

I used port scanning software to discover open port in my target machine.

Nmap output me that ports 2085,2086,5009 and other unusual ports (no http,no ssh,no FTP…) are open

My question is : What can i do to penetrate my target system ?

Thanks for answers !

windows – How do you correctly expose the RPC port with bitcoind running in WSL2-backed docker?

I’m trying to run bitcoind in a docker container backed by Windows 10/WSL2 using Docker Desktop. I’m using the ruimarinho/bitcoin-core:0.20.1-alpine image defined here: https://github.com/ruimarinho/docker-bitcoin-core.

I have a simple compose file as follows so I can run it with just docker-compose up bitcoind:

version: "3.8"
services:
    bitcoind:
        image: ruimarinho/bitcoin-core:0.20.1-alpine
        command:
            -listen
            -server
            -printtoconsole
            -chain=regtest
            -rpcbind=0.0.0.0:18443
            -rpcallowip=0.0.0.0/0
            -rpcauth={nonsense}
        ports:
            - "18443:18443"
            - "18444:18444"

When I run the compose command as shown above, the container starts and appears to run as intended:

The log:

λ docker-compose run bitcoind
Creating bitcoin_bitcoind_run ... done
/entrypoint.sh: assuming arguments for bitcoind
/entrypoint.sh: setting data directory to /home/bitcoin/.bitcoin

2020-10-03T19:26:47Z Bitcoin Core version v0.20.1.0-g7ff64311bee570874c4f0dfa18f518552188df08 (release build)
2020-10-03T19:26:47Z Validating signatures for all blocks.
2020-10-03T19:26:47Z Setting nMinimumChainWork=0000000000000000000000000000000000000000000000000000000000000000
2020-10-03T19:26:47Z Using the 'sse4(1way),sse41(4way),avx2(8way)' SHA256 implementation
2020-10-03T19:26:47Z Using RdSeed as additional entropy source
2020-10-03T19:26:47Z Using RdRand as an additional entropy source
2020-10-03T19:26:47Z Default data directory /home/bitcoin/.bitcoin
2020-10-03T19:26:47Z Using data directory /home/bitcoin/.bitcoin/regtest
2020-10-03T19:26:47Z Config file: /home/bitcoin/.bitcoin/bitcoin.conf (not found, skipping)
2020-10-03T19:26:47Z Command-line arg: chain="regtest"
2020-10-03T19:26:47Z Command-line arg: datadir="/home/bitcoin/.bitcoin"
2020-10-03T19:26:47Z Command-line arg: listen=""
2020-10-03T19:26:47Z Command-line arg: printtoconsole=""
2020-10-03T19:26:47Z Command-line arg: rpcallowip="0.0.0.0/0"
2020-10-03T19:26:47Z Command-line arg: rpcauth=****
2020-10-03T19:26:47Z Command-line arg: rpcbind=****
2020-10-03T19:26:47Z Command-line arg: server=""
2020-10-03T19:26:47Z Using at most 125 automatic connections (1048576 file descriptors available)
2020-10-03T19:26:47Z Using 16 MiB out of 32/2 requested for signature cache, able to store 524288 elements
2020-10-03T19:26:47Z Using 16 MiB out of 32/2 requested for script execution cache, able to store 524288 elements
2020-10-03T19:26:47Z Script verification uses 15 additional threads
2020-10-03T19:26:47Z scheduler thread start
2020-10-03T19:26:47Z WARNING: the RPC server is not safe to expose to untrusted networks such as the public internet
2020-10-03T19:26:47Z HTTP: creating work queue of depth 16
2020-10-03T19:26:47Z No rpcpassword set - using random cookie authentication.
2020-10-03T19:26:47Z Generated RPC authentication cookie /home/bitcoin/.bitcoin/regtest/.cookie
2020-10-03T19:26:47Z Using rpcauth authentication.
2020-10-03T19:26:47Z HTTP: starting 4 worker threads
2020-10-03T19:26:47Z Using wallet directory /home/bitcoin/.bitcoin/regtest/wallets
2020-10-03T19:26:47Z init message: Verifying wallet(s)...
2020-10-03T19:26:47Z Using BerkeleyDB version Berkeley DB 4.8.30: (April  9, 2010)
2020-10-03T19:26:47Z Using wallet /home/bitcoin/.bitcoin/regtest/wallets
2020-10-03T19:26:47Z BerkeleyEnvironment::Open: LogDir=/home/bitcoin/.bitcoin/regtest/wallets/database ErrorFile=/home/bitcoin/.bitcoin/regtest/wallets/db.log
2020-10-03T19:26:47Z init message: Loading banlist...
2020-10-03T19:26:47Z ERROR: DeserializeFileDB: Failed to open file /home/bitcoin/.bitcoin/regtest/banlist.dat
2020-10-03T19:26:47Z Invalid or missing banlist.dat; recreating
2020-10-03T19:26:47Z Using /16 prefix for IP bucketing
2020-10-03T19:26:47Z Cache configuration:
2020-10-03T19:26:47Z * Using 2.0 MiB for block index database
2020-10-03T19:26:47Z * Using 8.0 MiB for chain state database
2020-10-03T19:26:47Z * Using 440.0 MiB for in-memory UTXO set (plus up to 286.1 MiB of unused mempool space)
2020-10-03T19:26:47Z init message: Loading block index...
2020-10-03T19:26:47Z Opening LevelDB in /home/bitcoin/.bitcoin/regtest/blocks/index
2020-10-03T19:26:47Z Opened LevelDB successfully
2020-10-03T19:26:47Z Using obfuscation key for /home/bitcoin/.bitcoin/regtest/blocks/index: 0000000000000000
2020-10-03T19:26:47Z LoadBlockIndexDB: last block file = 0
2020-10-03T19:26:47Z LoadBlockIndexDB: last block file info: CBlockFileInfo(blocks=0, size=0, heights=0...0, time=1970-01-01...1970-01-01)
2020-10-03T19:26:47Z Checking all blk files are present...
2020-10-03T19:26:47Z Initializing databases...
2020-10-03T19:26:47Z Pre-allocating up to position 0x1000000 in blk00000.dat
2020-10-03T19:26:47Z Opening LevelDB in /home/bitcoin/.bitcoin/regtest/chainstate
2020-10-03T19:26:47Z Opened LevelDB successfully
2020-10-03T19:26:47Z Wrote new obfuscate key for /home/bitcoin/.bitcoin/regtest/chainstate: 736e3a38a2e0107d
2020-10-03T19:26:47Z Using obfuscation key for /home/bitcoin/.bitcoin/regtest/chainstate: 736e3a38a2e0107d
2020-10-03T19:26:47Z init message: Rewinding blocks...
2020-10-03T19:26:47Z  block index              42ms
2020-10-03T19:26:47Z init message: Loading wallet...
2020-10-03T19:26:47Z BerkeleyEnvironment::Open: LogDir=/home/bitcoin/.bitcoin/regtest/wallets/database ErrorFile=/home/bitcoin/.bitcoin/regtest/wallets/db.log
2020-10-03T19:26:47Z (default wallet) Wallet File Version = 10500
2020-10-03T19:26:47Z (default wallet) Keys: 0 plaintext, 0 encrypted, 0 w/ metadata, 0 total. Unknown wallet records: 0
2020-10-03T19:26:47Z (default wallet) Performing wallet upgrade to 169900
2020-10-03T19:26:48Z (default wallet) keypool added 2000 keys (1000 internal), size=2000 (1000 internal)
2020-10-03T19:26:48Z (default wallet) LegacyScriptPubKeyMan::NewKeyPool rewrote keypool
2020-10-03T19:26:48Z (default wallet) Wallet completed loading in            1324ms
2020-10-03T19:26:48Z (default wallet) setKeyPool.size() = 2000
2020-10-03T19:26:48Z (default wallet) mapWallet.size() = 0
2020-10-03T19:26:48Z (default wallet) m_address_book.size() = 0
2020-10-03T19:26:48Z UpdateTip: new best=0f9188f13cb7b2c71f2a335e3a4fc328bf5beb436012afca590b1a11466e2206 height=0 version=0x00000001 log2_work=1 tx=1 date='2011-02-02T23:16:42Z' progress=1.000000 cache=0.0MiB(0txo)
2020-10-03T19:26:48Z block tree size = 1
2020-10-03T19:26:48Z nBestHeight = 0
2020-10-03T19:26:48Z Failed to open mempool file from disk. Continuing anyway.
2020-10-03T19:26:48Z torcontrol thread start
2020-10-03T19:26:48Z Bound to (::):18444
2020-10-03T19:26:48Z Bound to 0.0.0.0:18444
2020-10-03T19:26:48Z init message: Loading P2P addresses...
2020-10-03T19:26:48Z ERROR: DeserializeFileDB: Failed to open file /home/bitcoin/.bitcoin/regtest/peers.dat
2020-10-03T19:26:48Z Invalid or missing peers.dat; recreating
2020-10-03T19:26:48Z init message: Starting network threads...
2020-10-03T19:26:48Z net thread start
2020-10-03T19:26:48Z dnsseed thread start
2020-10-03T19:26:48Z 0 addresses found from DNS seeds
2020-10-03T19:26:48Z addcon thread start
2020-10-03T19:26:48Z init message: Done loading
2020-10-03T19:26:48Z dnsseed thread exit
2020-10-03T19:26:48Z opencon thread start
2020-10-03T19:26:48Z msghand thread start
2020-10-03T19:27:49Z Adding fixed seed nodes as DNS doesn't seem to be available.

If I exec into this running container to verify that ports are bound, this is what I find:

λ docker exec -it a744a31c4dd3 /bin/sh
/ # netstat -tan
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address           Foreign Address         State
tcp        0      0 127.0.0.11:41427        0.0.0.0:*               LISTEN
tcp        0      0 0.0.0.0:18443           0.0.0.0:*               LISTEN
tcp        0      0 0.0.0.0:18444           0.0.0.0:*               LISTEN
tcp        0      0 :::18444                :::*                    LISTEN
/ #

But when I open a shell in the backing WSL2 instance, I don’t find any TCP ports bound at all:
enter image description here

And perhaps not unexpectedly, if I try to connect to the WSL2 instance’s ip address, the connection is refused.

It seems that there may be some WSL2 issues at play here:
https://github.com/microsoft/WSL/issues/4636
https://github.com/microsoft/WSL/issues/4769
https://github.com/microsoft/WSL/issues/4353

But after reading those, I’m not sure if they apply to this situation or not.

Moreover, it seems that this works for a simple netcat listener. If I start a container and open a port using netcat:

λ docker run -it -p "12345" alpine /bin/sh
/ # nc -vvvv -l -p 12345 0.0.0.0
listening on 0.0.0.0:12345 ...

I can show the open port on the WSL2 host:

KENOBI:/tmp/docker-desktop-root/mnt/host/c/Users/Ben# netstat -tan
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address           Foreign Address         State
tcp        0      0 :::12345                :::*                    LISTEN
tcp        0      0 ::ffff:172.24.199.25:12345 ::ffff:172.24.192.1:52429 ESTABLISHED
KENOBI:/tmp/docker-desktop-root/mnt/host/c/Users/Ben#

Using ncat from the Windows 10 host, I can connect to the netcat port:
enter image description here

Judging from a working netcat connection from the Windows 10 host to a running WSL2-backed container, it seems that somehow I’m not running bitcoind correctly.

Has anyone else experienced this, and were you able to solve it or find a reasonable workaround?

How to assign unique port after IP address for each user for windows RDP?

To increase the security i want to change default port for RDP to something as per my liking(intended format xxx.xxx.xxx.xxx:yyyy) for every… | Read the rest of https://www.webhostingtalk.com/showthread.php?t=1824010&goto=newpost