HackTheBox - Builder

Name: HackTheBox - Builder
Uploaded: 2024-02-12T20:03:25Z
Channel: IppSec
Description: 00:00 - Introduction 00:45 - Start of nmap 01:45 - Looking at Jenkins Advisory 3314 (CVE-2024-23897), which has a File Read vulnerability in the CLI. Th...

IppSec · Beginner ·🔐 Cybersecurity ·2y ago

00:00 - Introduction 00:45 - Start of nmap 01:45 - Looking at Jenkins Advisory 3314 (CVE-2024-23897), which has a File Read vulnerability in the CLI. Then downloading the Jar 03:00 - Explaining the Vulnerability with a quick demo 06:00 - Creating a really nasty bash script to fuzz many of the Jenkins Paramaters to see which produce the most number of lines 13:45 - Script working, discovering which commands let us export the entire passwd file 15:00 - Using docker to pull the latest version of Jenkins, in order to see how it stores credentials 21:40 - Extracting the Password Hash for Jennifer a…

Watch on YouTube ↗ (saves to browser)

Chapters (12)

Introduction

0:45 Start of nmap

1:45 Looking at Jenkins Advisory 3314 (CVE-2024-23897), which has a File Read vulne

3:00 Explaining the Vulnerability with a quick demo

6:00 Creating a really nasty bash script to fuzz many of the Jenkins Paramaters to

13:45 Script working, discovering which commands let us export the entire passwd fil

15:00 Using docker to pull the latest version of Jenkins, in order to see how it sto

21:40 Extracting the Password Hash for Jennifer and cracking it to get logged into J

24:45 Showing Jenkins Script Console, a fun way to get code execution on Jenkins. Bu

25:50 Going into the Credentials Store for Jenkins, discovering a SSH Key is there.

35:00 Flailing around, trying to export all the secrets needed to decrypt the SSH Ke

1:00:36 Exporting the SSH Key through a Jenkins Pipeline

Playlist

Uploads from IppSec · IppSec · 0 of 60

← Previous Next →