HackTheBox - GiveBack

Name: HackTheBox - GiveBack
Uploaded: 2026-02-21T15:01:27+00:00
Channel: IppSec
Description: 00:00 - Introduction 01:00 - Start of nmap 03:20 - Adding the API Key to our WPScan 08:00 - Discovering a POC for the GiveWP plugin and getting a shell ...

IppSec · Beginner ·🔐 Cybersecurity ·1mo ago

00:00 - Introduction 01:00 - Start of nmap 03:20 - Adding the API Key to our WPScan 08:00 - Discovering a POC for the GiveWP plugin and getting a shell 12:00 - Looking at the WP Database, not getting much information 18:00 - Discovering an HTTP endpoint in the environment variable, setting up chisel to look at it 22:00 - Looking at the custom web page, it is vulnerable to a PGP CGI Vulnerability 30:00 - Shell on the second pod 31:00 - Discovering a Kubernetes (k8s) token, copying it back to our box and setting up kubectl to examine Kubernetes and dumping secrets 39:50 - Showing we didn't need …

Watch on YouTube ↗ (saves to browser)

Chapters (12)

Introduction

1:00 Start of nmap

3:20 Adding the API Key to our WPScan

8:00 Discovering a POC for the GiveWP plugin and getting a shell

12:00 Looking at the WP Database, not getting much information

18:00 Discovering an HTTP endpoint in the environment variable, setting up chisel to

22:00 Looking at the custom web page, it is vulnerable to a PGP CGI Vulnerability

30:00 Shell on the second pod

31:00 Discovering a Kubernetes (k8s) token, copying it back to our box and setting u

39:50 Showing we didn't need KubeCTL we could have used curl, showing hacktricks age

44:50 With a password from k8s, we can login to the box and execute a runc wrapper w

52:15 Showing an alternative way to exploit this binary through exploiting the wrapp

Playlist

Uploads from IppSec · IppSec · 0 of 60

← Previous Next →