Apr 20 ยท 6 min read ยท Originally published on satyamrastogi.com 3 million FTP servers operating without encryption expose credentials and sensitive data to network interception. Red teams exploit plaintext protocols for initial access and lateral movement in enterprise e...
Join discussion
Feb 12 ยท 5 min read ยท Crocodile is a beginner-friendly Linux room that focuses on fundamental enumeration techniques, including Nmap scanning, anonymous FTP access, and directory brute forcing. In this walkthrough, we will take a structured approach to identifying exposed...
Join discussionJan 20 ยท 13 min read ยท What is cURL? cURL stands for "Client URL." It is a free tool that lets you send and receive data from the internet using your computer's command line. It was created by a human named Daniel Stenberg in 1997. Yes, literally there were no Claude, Chat...
Join discussion
Dec 6, 2025 ยท 9 min read ยท As part of our SOCโmas journey, todayโs challenge brings us deep into the fundamentals of network service discovery. While TBFCโs QA environment has been compromised, this task is the perfect opportunity to sharpen our skills with realโworld techniqu...
Join discussion
Dec 5, 2025 ยท 7 min read ยท ๋ค์ด๊ฐ๋ฉฐ ํ๋ก์ ํธ์์ FTP๋ฅผ ํตํด ํ์ผ์ ์ ์กํ๋ ํด๋ผ์ด์ธํธ๋ฅผ ๊ฐ๋ฐํ์ ๋ ์ด์ผ๊ธฐ์ ๋๋ค. ํ๋กํ ์ฝ์ ๋ํ ์ดํด ์์ด ๊ฐ๋ฐ์ ์งํํ๋ค ๋ณด๋ ๋ถํ์ํ๊ฒ ์๊ฐ์ ์๋ชจํ ๊ฒฝํ์ด ์์ด์ RFC ์๋ฌธ์ ์ฝ์ด๋ณด๊ฒ ๋์์ต๋๋ค. ์ฝ๊ฒ ๋ ๊ณ๊ธฐ ๋น์ FTP ํ๋กํ ์ฝ์ ๋ํ ์ดํด๊ฐ ๋ถ์กฑํ ์ํ๋ก ๊ฐ๋ฐ์ ์์ํ์ต๋๋ค. '์ ์ด๋ฅผ ์ํ ํฌํธ์ ๋ฐ์ดํฐ ์ ์ก์ ์ํ ํฌํธ๊ฐ ๋ถ๋ฆฌ๋์ด ์๋ค' ์ ๋๋ง ์๊ณ ์์๊ณ Active ๋ชจ๋์ Passive ๋ชจ๋์ ์ฐจ์ด๋ฅผ ์ ๋๋ก ์ดํด...
Join discussion
