Initial All Port scan.

All port didnt bring much in. Moving to service enumeration

Notice the disallowed entries. Let’s start there.
I visited the first robots.txt link and got this

I visited the other links and all of them led me here

There is a sign up link at the bottom but it doesn’t go anywhere. However, the blog posts do, and all of the blogs have the author “admin”

I bounced around for a second and decided to run wappalyzer to analyze what technolgies this web server was utilizing. I find “Ghost” CMS and blogs and decided to use searchsploit to see if I can find anything. I got exactly one result.

That’ll do! But I quickly find out I need credentials that I do not have. While I was doing this I had gobuster and ffuf running in the background. gobuster didnt return much, but ffuf did.

Let’s add it to the hosts file and go check it out