HackTheBox - Inject

Name: HackTheBox - Inject
Uploaded: 2023-07-08T15:00:02Z
Channel: IppSec
Description: 00:00 - Introduction 00:58 - Start of nmap 01:45 - Trying to identify the technology running the webapp, 404 page reveals it is likely tomcat 03:00 - Ru...

IppSec · Beginner ·🔐 Cybersecurity ·2y ago

00:00 - Introduction 00:58 - Start of nmap 01:45 - Trying to identify the technology running the webapp, 404 page reveals it is likely tomcat 03:00 - Running Gobuster, then checking out the page 04:00 - Uploading an image and discovering an file disclosure vulnerability 05:15 - Talking about how File Disclosures in Java can reveal directory listings, and grabbing pom.xml 07:45 - Using Snyk to identify vulnerabilities, but first we have to install Maven 10:45 - Exploiting CVE-2022-22963 Manually 11:55 - Playing with the exploit getting a reverse shell by dropping a file on the box (easy), then …

Watch on YouTube ↗ (saves to browser)

Chapters (14)

Introduction

0:58 Start of nmap

1:45 Trying to identify the technology running the webapp, 404 page reveals it is l

3:00 Running Gobuster, then checking out the page

4:00 Uploading an image and discovering an file disclosure vulnerability

5:15 Talking about how File Disclosures in Java can reveal directory listings, and

7:45 Using Snyk to identify vulnerabilities, but first we have to install Maven

10:45 Exploiting CVE-2022-22963 Manually

11:55 Playing with the exploit getting a reverse shell by dropping a file on the box

18:30 Shell as Frank, finding a password in the .m2/settings.xml file

19:50 Shell as Phil

22:00 Using find to show files owned by a group and finding a /opt/automation/tasks

24:10 Running Pspy to identify ansible is running on a cron job and executing any pl

26:30 Creating a playbook that sends us a shell

Playlist

Uploads from IppSec · IppSec · 0 of 60

← Previous Next →