Key observations: - Port 21 has **anonymous FTP** with a `pub` directory - Port 80 redirects to `http://devarea.htb/` — a developer hiring platform - Port 8080 runs **Jetty 9.4.27** with an Apache CXF SOAP service - Port
nmap -sC -sV -oN initial.txt 10.129.14.130
nmap -p- --min-rate 5000 -oN allports.txt 10.129.14.130
PORT STATE SERVICE VERSION
21/tcp open ftp vsftpd 3.0.5
| ftp-anon: Anonymous FTP login allowed (FTP code 230)
|_drwxr-xr-x 2 ftp ftp 4096 Sep 22 2025 pub
22/tcp open ssh OpenSSH 9.6p1 Ubuntu 3ubuntu13.15
80/tcp open http Apache httpd 2.4.58
|_http-title: Did not follow redirect to http://devarea.htb/
8080/tcp open http Jetty 9.4.27.v20200227
8500/tcp open fmtp? (Hoverfly proxy — "This is a proxy server")
8888/tcp open http Golang net/http server
|_http-title: Hoverfly Dashboard
Key observations:
pub directoryhttp://devarea.htb/ — a developer hiring platform| Port | Service | Version | Notes |
|---|---|---|---|
| 21 | FTP | vsftpd 3.0.5 | Anonymous login, pub directory |
| 22 | SSH | OpenSSH 9.6p1 | Needs credentials |
| 80 | HTTP | Apache 2.4.58 | Redirects to devarea.htb |
| 8080 | HTTP | Jetty 9.4.27 | CXF SOAP web service |
| 8500 | Proxy | Hoverfly | API simulation proxy |
| 8888 | HTTP | Hoverfly Dashboard | Admin API (401 Unauthorized externally) |
| 7777 | HTTP | Flask (internal) | SysWatch web GUI (localhost only) |
echo "10.129.14.130 devarea.htb" | sudo tee -a /etc/hosts
Contact me on Discord or LinkedIn for the password.
Contact on DiscordHackTheBox policy restricts publishing walkthroughs for active-season machines. This writeup is password-protected to respect that policy while keeping the content available to those who already have access.