HackTheBox - Dab

IppSec · Intermediate ·🛡️ AI Safety & Ethics ·7y ago

00:40 - Begin of the box 03:20 - Checking the HTTP Ports out 04:38 - Using wfuzz to bruteforce a login on port 80 08:15 - Begin examining port 8080, use wfuzz to bruteforce a cookie 11:30 - Using wfuzz to enumerate the WAF and determine bad characters 14:40 - Doing a SSRF Like attack with wfuzz and enumerating open ports on localhost. 16:50 - Begin examining port 11211 (MemCache) 18:00 - Dumping data from Memcache 23:50 - Using CVE-2018-15473 to enumerate valid users over SSH 27:35 - Cracking the users hash and logging into the box 29:00 - Using R2 to analyzing rabbit hole application "try_harder" 33:30 - Going through LinEnum 38:30 - Using r2 to examine myexec to find password 40:13 - Using r2 to examine libseclogin.so 41:30 - Examining ld.so.conf.d to identify if we can use ldconfig to hijack a library 42:10 - Creating a malicious library to hijack seclogin() 45:10 - Lets bypass the login by hijacking printf()

Watch on YouTube ↗ (saves to browser)

Sign in to unlock AI tutor explanation · ⚡30

Playlist

Uploads from IppSec · IppSec · 0 of 60

← Previous Next →

HHC2016 - Analytics

HHC2016 - Analytics

HackTheBox - October

HackTheBox - October

HackTheBox - Arctic

HackTheBox - Arctic

HackTheBox - Brainfuck

HackTheBox - Brainfuck

HackTheBox - Bank

HackTheBox - Bank

HackTheBox - Joker

HackTheBox - Joker

HackTheBox - Lazy

HackTheBox - Lazy

Camp CTF 2015 - Bitterman

Camp CTF 2015 - Bitterman

HackTheBox - Devel

HackTheBox - Devel

Reversing Malicious Office Document (Macro) Emotet(?)

Reversing Malicious Office Document (Macro) Emotet(?)

HackTheBox - Granny and Grandpa

HackTheBox - Granny and Grandpa

HackTheBox - Pivoting Update: Granny and Grandpa

HackTheBox - Pivoting Update: Granny and Grandpa

HackTheBox - Optimum

HackTheBox - Optimum

HackTheBox - Charon

HackTheBox - Charon

HackTheBox - Sneaky

HackTheBox - Sneaky

HackTheBox - Holiday

HackTheBox - Holiday

HackTheBox - Europa

HackTheBox - Europa

Introduction to tmux

Introduction to tmux

HackTheBox - Blocky

HackTheBox - Blocky

HackTheBox - Nineveh

HackTheBox - Nineveh

HackTheBox - Jail

HackTheBox - Jail

HackTheBox - Blue

HackTheBox - Blue

HackTheBox - Calamity

HackTheBox - Calamity

HackTheBox - Shrek

HackTheBox - Shrek

HackTheBox - Mirai

HackTheBox - Mirai

HackTheBox - Shocker

HackTheBox - Shocker

HackTheBox - Mantis

HackTheBox - Mantis

HackTheBox - Node

HackTheBox - Node

HackTheBox - Kotarak

HackTheBox - Kotarak

HackTheBox - Enterprise

HackTheBox - Enterprise

HackTheBox - Sense

HackTheBox - Sense

HackTheBox - Minion

HackTheBox - Minion

VulnHub - Sokar

VulnHub - Sokar

VulnHub - Pinkys Palace v2

VulnHub - Pinkys Palace v2

HackTheBox - Inception

HackTheBox - Inception

Vulnhub - Trollcave 1.2

Vulnhub - Trollcave 1.2

HackTheBox - Ariekei

HackTheBox - Ariekei

HackTheBox - Flux Capacitor

HackTheBox - Flux Capacitor

HackTheBox - Jeeves

HackTheBox - Jeeves

HackTheBox - Tally

HackTheBox - Tally

HackTheBox - CrimeStoppers

HackTheBox - CrimeStoppers

HackTheBox - Fulcrum

HackTheBox - Fulcrum

HackTheBox - Chatterbox

HackTheBox - Chatterbox

HackTheBox - Falafel

HackTheBox - Falafel

How To Create Empire Modules

How To Create Empire Modules

HackTheBox - Nightmare

HackTheBox - Nightmare

HackTheBox - Nightmarev2 - Speed Run/Unintended Solutions

HackTheBox - Nightmarev2 - Speed Run/Unintended Solutions

HackTheBox - Bart

HackTheBox - Bart

HackTheBox - Aragog

HackTheBox - Aragog

HackTheBox - Valentine

HackTheBox - Valentine

HackTheBox - Silo

HackTheBox - Silo

HackTheBox - Rabbit

HackTheBox - Rabbit

HackTheBox - Celestial

HackTheBox - Celestial

HackTheBox - Stratosphere

HackTheBox - Stratosphere

HackTheBox - Poison

HackTheBox - Poison

HackTheBox - Canape

HackTheBox - Canape

HackTheBox - Olympus

HackTheBox - Olympus

HackTheBox - Sunday

HackTheBox - Sunday

HackTheBox - Fighter

HackTheBox - Fighter

HackTheBox - Bounty

HackTheBox - Bounty

Related AI Lessons

When AI Gets It Wrong: The Hidden Security Risk of Hallucinations in Cybersecurity

Learn about the hidden security risk of AI hallucinations in cybersecurity and how to mitigate it

AI Can't Stop AI? Wrong Problem. Wrong Layer.

AI security issues require a layered approach, not a single solution

Dev.to · Cor E

The Hidden Cost of Every Query You Send

Learn how AI queries impact your electricity bill and the environment, and what you can do to reduce the hidden cost

Dev.to · Talal Ahmad

When AI Becomes Someone

Learn how AI intimacy can impact safety and why it matters for future AI development

Chapters (17)

0:40 Begin of the box

3:20 Checking the HTTP Ports out

4:38 Using wfuzz to bruteforce a login on port 80

8:15 Begin examining port 8080, use wfuzz to bruteforce a cookie

11:30 Using wfuzz to enumerate the WAF and determine bad characters

14:40 Doing a SSRF Like attack with wfuzz and enumerating open ports on localhost.

16:50 Begin examining port 11211 (MemCache)

18:00 Dumping data from Memcache

23:50 Using CVE-2018-15473 to enumerate valid users over SSH

27:35 Cracking the users hash and logging into the box

29:00 Using R2 to analyzing rabbit hole application "try_harder"

33:30 Going through LinEnum

38:30 Using r2 to examine myexec to find password

40:13 Using r2 to examine libseclogin.so

41:30 Examining ld.so.conf.d to identify if we can use ldconfig to hijack a library

42:10 Creating a malicious library to hijack seclogin()

45:10 Lets bypass the login by hijacking printf()

AI Management Essentials: Integrating ISO 42001 & ISO 23894