> For the complete documentation index, see [llms.txt](https://icybersec.gitbook.io/cybersecuritynote/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://icybersec.gitbook.io/cybersecuritynote/ba-chang-huan-jing/vulnhub/pinkys-palace-v1.md). # Pinkys Palace v1 > > > vm box 靶场IP：`192.168.32.9` ![image-20220720155302932](https://github.com/yingshang/CybersecurityNote/blob/master/.gitbook/assets/image-20220720155302932.png) 扫描对外端口 ``` ┌──(root㉿kali)-[~] └─# nmap -p1-65535 -sV 192.168.32.9 Starting Nmap 7.92 ( https://nmap.org ) at 2022-07-20 03:56 EDT Nmap scan report for 192.168.32.9 Host is up (0.00034s latency). Not shown: 65532 closed tcp ports (reset) PORT STATE SERVICE VERSION 8080/tcp open http nginx 1.10.3 31337/tcp open http-proxy Squid http proxy 3.5.23 64666/tcp open ssh OpenSSH 7.4p1 Debian 10+deb9u2 (protocol 2.0) MAC Address: 08:00:27:77:F4:3C (Oracle VirtualBox virtual NIC) Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 9.42 seconds ``` 浏览器访问 ![image-20220720155529594](https://github.com/yingshang/CybersecurityNote/blob/master/.gitbook/assets/image-20220720155529594.png) ![image-20220720155514965](https://github.com/yingshang/CybersecurityNote/blob/master/.gitbook/assets/image-20220720155514965.png) 需要使用squid访问环回地址才可以不被拦截 ``` ┌──(root㉿kali)-[~] └─# curl http://127.0.0.1:8080 -x 192.168.32.9:31337 Pinky's HTTP File Server

Pinky's HTTP File Server

Under Development!