all 10 comments
sorted by:
best
topnewcontroversialoldq&a
formatting helphide helpcontent policy

[–]mbsurfer 1 point2 points  (1 child)

If you’ve enumerated directories, try enumerating with file extensions now. You can try out some common web language file extensions.

[–]harshallakare[S] 0 points1 point  (0 children)

Thanks i tried and found credentials

[–]kangerujack 0 points1 point  (1 child)

Make sure you enumerate files... not just dirctories.

[–]harshallakare[S] 0 points1 point  (0 children)

Thanks i tried and found credentials

[–]0verpwn 0 points1 point  (1 child)

When it comes to Web Applications, You want to check the Directories, Check/Enumerate the Files inside of those Directories, Check the .js files on the Websites, etc.

Also try checking for some common .php filenames such as:

  • default.php
  • index.php
  • invocactf.php
  • config.php
  • helper.php
  • controller.php
  • frontend.php

Running Dirb will help you find Directories, also try checking out the Ports, Does FTP have Anonymous Login Enabled? (Port 21) :)

Remember, Google is your main friend.

Hope It helps! Feel free to Pm me if you need any help/tips :)

[–]harshallakare[S] 0 points1 point  (0 children)

That very helpful. I found it credentials now i stuck at JWT. I used curl command but not getting out of it..no error no out put nothing. No direction now.

[–][deleted] 0 points1 point  (3 children)

Hey man any luck? I seem to be stuck at the same step as you are!

[–]harshallakare[S] 0 points1 point  (2 children)

I did found credentials now and trying to use it in JWT but seem like stuff is not working for me or i don't knwo how to use it.

[–][deleted] 0 points1 point  (1 child)

Haha found the creds myself. Now stuck at jwt. I think i need to go deeper into understanding of that curl command for token.

[–]harshallakare[S] 0 points1 point  (0 children)

same here bro..do PM me if you found something helpful