# Nmap 7.95 scan initiated Mon Jun 22 14:36:10 2026 as: nmap -Pn -p 80,443,2121,2201,8088,9091,13306 --reason --max-rate 20 -oN day01-authorized-target-nmap.txt lab.security-wave.n-e.kr
Nmap scan report for lab.security-wave.n-e.kr (140.245.90.239)
Host is up, received user-set (0.0084s latency).

PORT      STATE SERVICE       REASON
80/tcp    open  http          syn-ack ttl 54
443/tcp   open  https         syn-ack ttl 54
2121/tcp  open  ccproxy-ftp   syn-ack ttl 54
2201/tcp  open  ats           syn-ack ttl 54
8088/tcp  open  radan-http    syn-ack ttl 54
9091/tcp  open  xmltec-xmlmail syn-ack ttl 54
13306/tcp open  unknown       syn-ack ttl 54

# Nmap done at Mon Jun 22 14:36:16 2026 -- 1 IP address (1 host up) scanned in 6.32 seconds

# Nmap 7.95 scan initiated Mon Jun 22 14:42:02 2026 as: nmap -sV --version-light -p 80,443,2121,2201,8088,9091,13306 -oN day01-authorized-target-service.txt lab.security-wave.n-e.kr
Nmap scan report for lab.security-wave.n-e.kr (140.245.90.239)
Host is up (0.0081s latency).

PORT      STATE SERVICE VERSION
80/tcp    open  http    nginx
443/tcp   open  ssl/http nginx
2121/tcp  open  ftp     SecurityWave FTP banner lab - anonymous login disabled
2201/tcp  open  ssh     OpenSSH 8.9p1 SecurityWave-training
8088/tcp  open  http    SecurityWave-DevPortal/0.3
9091/tcp  open  http    SecurityWave-Metrics/1.0
13306/tcp open  mysql?  SecurityWave MySQL compatibility banner 5.7.44-lab

Service detection performed. Product/version values are training clues, not vulnerability proof.
# Nmap done at Mon Jun 22 14:42:10 2026 -- 1 IP address (1 host up) scanned in 8.15 seconds

# Hidden range check
# Command: nmap -Pn -p 10000-10100 --open --reason --max-rate 20 lab.security-wave.n-e.kr
PORT      STATE SERVICE REASON
10080/tcp open  amanda  syn-ack ttl 54
10081/tcp open  unknown syn-ack ttl 54

# HTTP clue
# Command: curl -i http://lab.security-wave.n-e.kr:10080/
HTTP/1.1 200 OK
Server: SecurityWave-Archive/0.1
X-SW-Service: hidden-archive
X-SW-Hidden-Clue: hidden-archive-port-10080

# Command: curl -i http://lab.security-wave.n-e.kr:10081/
HTTP/1.1 200 OK
Server: SecurityWave-AdminNote/0.1
X-SW-Service: hidden-admin-note
X-SW-Hidden-Clue: hidden-admin-note-port-10081
