Hack The Box — Bastion: Walkthrough (without Metasploit)

Reconnaissance

Begin with nmap scan as usual. Interestingly there is no web service running on this machine. With the hints of the box name and google search, this kind of server is known as bastion host which is a specialized proxy server configured to withstand attacks and provide access to privite network.

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store