https://4ntar3s.com/Recent content on 4ntar3sHugoen-usSun, 21 Jun 2026 10:00:00 -0400https://4ntar3s.com/redeemer-starting-point-tier-0/Sun, 21 Jun 2026 10:00:00 -0400https://4ntar3s.com/redeemer-starting-point-tier-0/<p>First box on the 4ntar3s log. Redeemer is a Tier 0 Starting Point machine — no exploitation chain, no privesc, just a single misconfigured service. The lesson here isn&rsquo;t the hack, it&rsquo;s the habit: enumerate fully before you touch anything.</p> <h2 id="recon">Recon</h2> <p>Two-stage nmap. Fast full-port sweep first, then deep service detection on what comes back.</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">nmap -p- --min-rate <span class="m">5000</span> -oN sweep.txt 10.129.x.x </span></span></code></pre></td></tr></table> </div> </div><p>A single port answers:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-text" data-lang="text"><span class="line"><span class="cl">PORT STATE SERVICE </span></span><span class="line"><span class="cl">6379/tcp open redis </span></span></code></pre></td></tr></table> </div> </div><p>Then version detection on that one port:</p>