The author starts by visiting port 80 but doesn't find anything of interest.They run gobuster and ffuf to search for directories and subdomains.They discover a vulnerability in the ViewState mechanism of ASP.NET web applications.Using ysoserial.exe, they exploit the vulnerability to gain a reverse shell.