Post

Challenge 1:Let's Do The Discovery Dive.

This is a detailed writeup created for challenges associated with the Certified Web AppSecurity Expert (CWAE) certification.

Posted Updated
By beardenx
1 min read
Challenge 1:Let's Do The Discovery Dive.

Challenge/Task

  1. Enumerate the domain : the-abstractors.com
  2. Find all subdomain
  3. Find Open Ports/Service for all live subdomain

1. Subdomain Enumeration

Tools Used: Sublist3r, Netlas

Netlas : Attack Surface tool . Can be used to find subdomain Netlas Scanning Result

Sublist3r : Open Source tool. Can find here on the github. Sublist3r Scanning Result

Findings:

  • health.the-abstractors.com
  • the-abstractors.com

2. Open Ports for Each Accessible Host

Tool Used: PortWhisper. My own custom tool. Can find on my github Port Scanning Result

  • health.the-abstractors.com
    • Open Ports: [22,8080,9091]
  • the-abstractors.com
    • Open Ports: [25,80,443]

3. Technology Used

Technology Scanning Result

Write-Up, CWAE
Cert Write-Up
This post is licensed under CC BY 4.0 by the author.