靶场练习-vulnyx：Robot

PORT      STATE SERVICE VERSION

22/tcp    open  ssh     OpenSSH 8.4p1 Debian 5+deb11u1 (protocol 2.0)

| ssh-hostkey: 

|   3072 f0:e6:24:fb:9e:b0:7a:1a:bd:f7:b1:85:23:7f:b1:6f (RSA)

|   256 99:c8:74:31:45:10:58:b0:ce:cc:63:b4:7a:82:57:3d (ECDSA)

|_  256 60:da:3e:31:38:fa:b5:49:ab:48:c3:43:2c:9f:d1:32 (ED25519)

80/tcp    open  http    Apache httpd 2.4.56 ((Debian))

|_http-server-header: Apache/2.4.56 (Debian)

|_http-title: Hello Friend

27017/tcp open  mongodb MongoDB 5.0.21

| mongodb-databases: 

|   codeName = Unauthorized

|   code = 13

|   ok = 0.0

|_  errmsg = command listDatabases requires authentication

| mongodb-info: 

|   MongoDB Build info

|     sysInfo = deprecated

|     openssl

|       running = OpenSSL 1.1.1n  15 Mar 2022

|       compiled = OpenSSL 1.1.1n  15 Mar 2022

|     maxBsonObjectSize = 16777216

|     storageEngines

|       0 = devnull

|       1 = ephemeralForTest

|       2 = wiredTiger

|     ok = 1.0

|     debug = false

|     buildEnvironment

|       cppdefines = SAFEINT_USE_INTRINSICS 0 PCRE_STATIC NDEBUG _XOPEN_SOURCE 700 _GNU_SOURCE _FORTIFY_SOURCE 2 BOOST_THREAD_VERSION 5 BOOST_THREAD_USES_DATETIME BOOST_SYSTEM_NO_DEPRECATED BOOST_MATH_NO_LONG_DOUBLE_MATH_FUNCTIONS BOOST_ENABLE_ASSERT_DEBUG_HANDLER BOOST_LOG_NO_SHORTHAND_NAMES BOOST_LOG_USE_NATIVE_SYSLOG BOOST_LOG_WITHOUT_THREAD_ATTR ABSL_FORCE_ALIGNED_ACCESS

|       cxx = /opt/mongodbtoolchain/v3/bin/g++: g++ (GCC) 8.5.0

|       cxxflags = -Woverloaded-virtual -Wno-maybe-uninitialized -fsized-deallocation -std=c++17

|       target_arch = x86_64

|       target_os = linux

|       ccflags = -Werror -include mongo/platform/basic.h -ffp-contract=off -fasynchronous-unwind-tables -ggdb -Wall -Wsign-compare -Wno-unknown-pragmas -Winvalid-pch -fno-omit-frame-pointer -fno-strict-aliasing -O2 -march=sandybridge -mtune=generic -mprefer-vector-width=128 -Wno-unused-local-typedefs -Wno-unused-function -Wno-deprecated-declarations -Wno-unused-const-variable -Wno-unused-but-set-variable -Wno-missing-braces -fstack-protector-strong -Wa,--nocompress-debug-sections -fno-builtin-memcmp

|       linkflags = -Wl,--fatal-warnings -pthread -Wl,-z,now -fuse-ld=gold -fstack-protector-strong -Wl,--no-threads -Wl,--build-id -Wl,--hash-style=gnu -Wl,-z,noexecstack -Wl,--warn-execstack -Wl,-z,relro -Wl,--compress-debug-sections=none -Wl,-z,origin -Wl,--enable-new-dtags

|       distarch = x86_64

|       distmod = debian10

|       cc = /opt/mongodbtoolchain/v3/bin/gcc: gcc (GCC) 8.5.0

|     javascriptEngine = mozjs

|     bits = 64

|     allocator = tcmalloc

|     modules

|     gitVersion = 4fad44a858d8ee2d642566fc8872ef410f6534e4

|     version = 5.0.21

|     versionArray

|       3 = 0

|       0 = 5

|       1 = 0

|       2 = 21

|   Server status

|     codeName = Unauthorized

|     code = 13

|     ok = 0.0

|_    errmsg = command serverStatus requires authentication

| fingerprint-strings: 

|   FourOhFourRequest, GetRequest: 

|     HTTP/1.0 200 OK

|     Connection: close

|     Content-Type: text/plain

|     Content-Length: 85

|     looks like you are trying to access MongoDB over HTTP on the native driver port.

|   mongodb: 

|     errmsg

|     command serverStatus requires authentication

|     code

|     codeName

|_    Unauthorized

MAC Address: 00:0C:29:4E:6F:9F (VMware)

Device type: general purpose

Running: Linux 4.X|5.X

OS CPE: cpe:/o:linux:linux_kernel:4 cpe:/o:linux:linux_kernel:5

OS details: Linux 4.15 - 5.8

Network Distance: 1 hop

Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel