Content Discovery

1. What Is Content Discovery?

The answers to the first three questions are given in the paragraph above. It has been stated that there are 3 main ways to discover the content of a website, which are Manual, Automated and OSINT.

What is the Content Discovery method that begins with M?

"Manually"

What is the Content Discovery method that begins with A?

"Automated"

What is the Content Discovery method that begins with O?

"OSINT"

2. Manuel Discovery – Robots.txt

For the second task, we need to start the machine and go to the /robots.txt file of the ip address.

When we see the IP address of our machine, what we will do is go to the 'http://10.10.197.252/robots.txt' file.

Here is the answer to our question.

3. Manuel Discovery – Favicon

What we need to do for this task is to go to the URL address given to us. When we go to the site, we see a picture like the one below.

Here is what is asked of us; is to run the command below and compare it with the data at https://wiki.owasp.org/index.php/OWASP_favicon_database.

This is how our answer is determined.

4. Manual Discovery - Sitemap.xml

Sitemap.xml lists some old web pages that the current site is no longer using but is still running in the background.

The answer is at the bottom.

5. Manual Discovery - HTTP Headers

For Manual Discovery, what is requested from us in this task is to look at the Header headers. We run the requested code and see our response.

6. Manual Discovery - Framework Stack

When you look at the 'http://10.10.197.252' page source, we see a page load time and a comment at the end of each code, as well as a link to the framework's website. When we go to the link and look at the Documentation page;

7. OSINT - Google Hacking / Dorking

This task gives us information about Google Dork. The answer to our question is written in the paragraph.

8. OSINT – Wappalyzer

What online tool can be used to identify what technologies a website is running?

"wappalyzer"

9. OSINT – Wayback Machine

What is the website address for the Wayback Machine?

"https://archive.org/web/"

10. OSINT – Github

What is Git?

"version control system"

11. OSINT – S3 Buckets

What URL format do Amazon S3 buckets end in?

".s3.amazonaws.com"

12. Automated Discovery

The purpose of this Task is to provide us with automatic discovery. It allows us to access resources that we did not know existed before by checking whether a file or directory exists on a website.

Content Discovery

1. What Is Content Discovery?

The answers to the first three questions are given in the paragraph above. It has been stated that there are 3 main ways to discover the content of a website, which are Manual, Automated and OSINT.

What is the Content Discovery method that begins with M?

What is the Content Discovery method that begins with A?

What is the Content Discovery method that begins with O?

2. Manuel Discovery – Robots.txt

For the second task, we need to start the machine and go to the /robots.txt file of the ip address.

When we see the IP address of our machine, what we will do is go to the 'http://10.10.197.252/robots.txt' file.

Here is the answer to our question.

3. Manuel Discovery – Favicon

What we need to do for this task is to go to the URL address given to us. When we go to the site, we see a picture like the one below.

Here is what is asked of us; is to run the command below and compare it with the data at https://wiki.owasp.org/index.php/OWASP_favicon_database.

This is how our answer is determined.

4. Manual Discovery - Sitemap.xml

Sitemap.xml lists some old web pages that the current site is no longer using but is still running in the background.

The answer is at the bottom.

5. Manual Discovery - HTTP Headers

For Manual Discovery, what is requested from us in this task is to look at the Header headers. We run the requested code and see our response.

6. Manual Discovery - Framework Stack

When you look at the 'http://10.10.197.252' page source, we see a page load time and a comment at the end of each code, as well as a link to the framework's website. When we go to the link and look at the Documentation page;

7. OSINT - Google Hacking / Dorking

This task gives us information about Google Dork. The answer to our question is written in the paragraph.

8. OSINT – Wappalyzer

What online tool can be used to identify what technologies a website is running?

9. OSINT – Wayback Machine

What is the website address for the Wayback Machine?

10. OSINT – Github

What is Git?

11. OSINT – S3 Buckets

What URL format do Amazon S3 buckets end in?

12. Automated Discovery

The purpose of this Task is to provide us with automatic discovery. It allows us to access resources that we did not know existed before by checking whether a file or directory exists on a website.

When we run the commands, the answer to our questions is seen in the terminal.

What is the name of the directory beginning "/mo...." that was discovered?

What is the name of the log file that was discovered?