Hello all, I am working on eJPT Information Gathering lab and task 4 is An overlooked backup file in the webroot can be problematic if it reveals sensitive configuration details. I tried multiple things, I couldn’t find answer for this. Any clues or hints will be much appreciated. Thanks in advance.
use any file/directory searching tools like gobuster or dirbuster. You will find a file named something.bak(i dont remember exact name) then open that file with a text editor or just cat that file you wlll get the flag