HackTheBox - Admirer

IppSec · Intermediate ·📊 Data Analytics & Business Intelligence ·5y ago

01:15 - Doing nmap quickly by not running scripts to get open ports, then using that output to run scripts. 04:50 - Checking out the webserver, discovering robots.txt 07:55 - Running gobuster on the admin-dir with the extensions txt and php 11:15 - Finding credentials.txt within that admin-dir 13:15 - Logging into FTP to discover the web directory source 21:30 - Running gobuster again on utility-scripts to discover adminer.php 24:55 - Going to adminer and trying to login 27:10 - Bypassing adminer authentication by creating a MySQL Database 31:45 - Failing to drop a file in adminer 34:30 - Using LOAD DATA LOCAL to insert a file into our database 38:05 - Uploading the servers index.php to our database and discovering the password 39:00 - SSH into the server with the password found before 41:50 - Sudo allows us to set environment variables, using PYTHONPATH to hijack a python library... Failing to get a rev shell 49:00 - Switching to nc for a revshell and getting a root shell!

Watch on YouTube ↗ (saves to browser)

Sign in to unlock AI tutor explanation · ⚡30

Playlist

Uploads from IppSec · IppSec · 0 of 60

← Previous Next →

HHC2016 - Analytics

HHC2016 - Analytics

HackTheBox - October

HackTheBox - October

HackTheBox - Arctic

HackTheBox - Arctic

HackTheBox - Brainfuck

HackTheBox - Brainfuck

HackTheBox - Bank

HackTheBox - Bank

HackTheBox - Joker

HackTheBox - Joker

HackTheBox - Lazy

HackTheBox - Lazy

Camp CTF 2015 - Bitterman

Camp CTF 2015 - Bitterman

HackTheBox - Devel

HackTheBox - Devel

Reversing Malicious Office Document (Macro) Emotet(?)

Reversing Malicious Office Document (Macro) Emotet(?)

HackTheBox - Granny and Grandpa

HackTheBox - Granny and Grandpa

HackTheBox - Pivoting Update: Granny and Grandpa

HackTheBox - Pivoting Update: Granny and Grandpa

HackTheBox - Optimum

HackTheBox - Optimum

HackTheBox - Charon

HackTheBox - Charon

HackTheBox - Sneaky

HackTheBox - Sneaky

HackTheBox - Holiday

HackTheBox - Holiday

HackTheBox - Europa

HackTheBox - Europa

Introduction to tmux

Introduction to tmux

HackTheBox - Blocky

HackTheBox - Blocky

HackTheBox - Nineveh

HackTheBox - Nineveh

HackTheBox - Jail

HackTheBox - Jail

HackTheBox - Blue

HackTheBox - Blue

HackTheBox - Calamity

HackTheBox - Calamity

HackTheBox - Shrek

HackTheBox - Shrek

HackTheBox - Mirai

HackTheBox - Mirai

HackTheBox - Shocker

HackTheBox - Shocker

HackTheBox - Mantis

HackTheBox - Mantis

HackTheBox - Node

HackTheBox - Node

HackTheBox - Kotarak

HackTheBox - Kotarak

HackTheBox - Enterprise

HackTheBox - Enterprise

HackTheBox - Sense

HackTheBox - Sense

HackTheBox - Minion

HackTheBox - Minion

VulnHub - Sokar

VulnHub - Sokar

VulnHub - Pinkys Palace v2

VulnHub - Pinkys Palace v2

HackTheBox - Inception

HackTheBox - Inception

Vulnhub - Trollcave 1.2

Vulnhub - Trollcave 1.2

HackTheBox - Ariekei

HackTheBox - Ariekei

HackTheBox - Flux Capacitor

HackTheBox - Flux Capacitor

HackTheBox - Jeeves

HackTheBox - Jeeves

HackTheBox - Tally

HackTheBox - Tally

HackTheBox - CrimeStoppers

HackTheBox - CrimeStoppers

HackTheBox - Fulcrum

HackTheBox - Fulcrum

HackTheBox - Chatterbox

HackTheBox - Chatterbox

HackTheBox - Falafel

HackTheBox - Falafel

How To Create Empire Modules

How To Create Empire Modules

HackTheBox - Nightmare

HackTheBox - Nightmare

HackTheBox - Nightmarev2 - Speed Run/Unintended Solutions

HackTheBox - Nightmarev2 - Speed Run/Unintended Solutions

HackTheBox - Bart

HackTheBox - Bart

HackTheBox - Aragog

HackTheBox - Aragog

HackTheBox - Valentine

HackTheBox - Valentine

HackTheBox - Silo

HackTheBox - Silo

HackTheBox - Rabbit

HackTheBox - Rabbit

HackTheBox - Celestial

HackTheBox - Celestial

HackTheBox - Stratosphere

HackTheBox - Stratosphere

HackTheBox - Poison

HackTheBox - Poison

HackTheBox - Canape

HackTheBox - Canape

HackTheBox - Olympus

HackTheBox - Olympus

HackTheBox - Sunday

HackTheBox - Sunday

HackTheBox - Fighter

HackTheBox - Fighter

HackTheBox - Bounty

HackTheBox - Bounty

Related AI Lessons

Why Real-Time Analytics Eventually Changes Your Database Architecture

Real-time analytics can drastically change your database architecture, learn why and how to adapt

Dev.to · Mohamed Hussain S

Day 43: Hypothesis Testing & Statistical Analysis — Understanding How Data Makes Decisions

Learn hypothesis testing and statistical analysis to make data-driven decisions

Day 43: Hypothesis Testing & Statistical Analysis — Understanding How Data Makes Decisions

Learn hypothesis testing and statistical analysis to make data-driven decisions

Medium · Machine Learning

I Spoke With 8 Interviewers. I Expected an Offer. They Asked for a 9th Round.

Learn how to navigate lengthy interview processes and improve your chances of landing a job in a competitive market

Medium · Data Science

Chapters (14)

1:15 Doing nmap quickly by not running scripts to get open ports, then using that o

4:50 Checking out the webserver, discovering robots.txt

7:55 Running gobuster on the admin-dir with the extensions txt and php

11:15 Finding credentials.txt within that admin-dir

13:15 Logging into FTP to discover the web directory source

21:30 Running gobuster again on utility-scripts to discover adminer.php

24:55 Going to adminer and trying to login

27:10 Bypassing adminer authentication by creating a MySQL Database

31:45 Failing to drop a file in adminer

34:30 Using LOAD DATA LOCAL to insert a file into our database

38:05 Uploading the servers index.php to our database and discovering the password

39:00 SSH into the server with the password found before

41:50 Sudo allows us to set environment variables, using PYTHONPATH to hijack a pyth

49:00 Switching to nc for a revshell and getting a root shell!

Tableau Full Course 2026 | Tableau Tutorial For Beginners | Tableau Developer Course | Simplilearn