HackTheBox - MonitorsTwo

IppSec · Beginner ·🔐 Cybersecurity ·2y ago

Skills: AI Security90%Tool Use & Function Calling80%Security Basics80%Defensive AI70%

00:00 - Intro 01:02 - Start of nmap 01:50 - Discovering Cacti version and finding a vulnerability 03:50 - Sending the payload from the description, discovering we need to set the X-FORWARDED-FOR 05:00 - Incrementing Host_ID and Local_Data_Ids and discovering different output 06:15 - Discovering with local_data_ids set to 6 and host_id set to 1, we can get code execution 06:50 - Showing the python exploit and showing it blindly spray, looking at the Metasploit module for some more info 10:40 - Getting a reverse shell 11:30 - Using Script to set up our PTY since python is not installed 13:40 - Connecting to the MySQL Database and then cracking passwords 18:25 - SSH into the box with Marcus and discovering mail on the box 20:20 - Discovering Docker is old and vulnerable to CVE-2021-41091 21:55 - Looking at the docker overlayfs directories, discovering we can go in them, finding the web container 23:10 - Using CapSH to escalate privileges on our docker container so we can make Bash a SetUID Binary 24:50 - Executing bash -p to get root

Watch on YouTube ↗ (saves to browser)

Sign in to unlock AI tutor explanation · ⚡30

Playlist

Uploads from IppSec · IppSec · 0 of 60

← Previous Next →

HHC2016 - Analytics

HHC2016 - Analytics

HackTheBox - October

HackTheBox - October

HackTheBox - Arctic

HackTheBox - Arctic

HackTheBox - Brainfuck

HackTheBox - Brainfuck

HackTheBox - Bank

HackTheBox - Bank

HackTheBox - Joker

HackTheBox - Joker

HackTheBox - Lazy

HackTheBox - Lazy

Camp CTF 2015 - Bitterman

Camp CTF 2015 - Bitterman

HackTheBox - Devel

HackTheBox - Devel

Reversing Malicious Office Document (Macro) Emotet(?)

Reversing Malicious Office Document (Macro) Emotet(?)

HackTheBox - Granny and Grandpa

HackTheBox - Granny and Grandpa

HackTheBox - Pivoting Update: Granny and Grandpa

HackTheBox - Pivoting Update: Granny and Grandpa

HackTheBox - Optimum

HackTheBox - Optimum

HackTheBox - Charon

HackTheBox - Charon

HackTheBox - Sneaky

HackTheBox - Sneaky

HackTheBox - Holiday

HackTheBox - Holiday

HackTheBox - Europa

HackTheBox - Europa

Introduction to tmux

Introduction to tmux

HackTheBox - Blocky

HackTheBox - Blocky

HackTheBox - Nineveh

HackTheBox - Nineveh

HackTheBox - Jail

HackTheBox - Jail

HackTheBox - Blue

HackTheBox - Blue

HackTheBox - Calamity

HackTheBox - Calamity

HackTheBox - Shrek

HackTheBox - Shrek

HackTheBox - Mirai

HackTheBox - Mirai

HackTheBox - Shocker

HackTheBox - Shocker

HackTheBox - Mantis

HackTheBox - Mantis

HackTheBox - Node

HackTheBox - Node

HackTheBox - Kotarak

HackTheBox - Kotarak

HackTheBox - Enterprise

HackTheBox - Enterprise

HackTheBox - Sense

HackTheBox - Sense

HackTheBox - Minion

HackTheBox - Minion

VulnHub - Sokar

VulnHub - Sokar

VulnHub - Pinkys Palace v2

VulnHub - Pinkys Palace v2

HackTheBox - Inception

HackTheBox - Inception

Vulnhub - Trollcave 1.2

Vulnhub - Trollcave 1.2

HackTheBox - Ariekei

HackTheBox - Ariekei

HackTheBox - Flux Capacitor

HackTheBox - Flux Capacitor

HackTheBox - Jeeves

HackTheBox - Jeeves

HackTheBox - Tally

HackTheBox - Tally

HackTheBox - CrimeStoppers

HackTheBox - CrimeStoppers

HackTheBox - Fulcrum

HackTheBox - Fulcrum

HackTheBox - Chatterbox

HackTheBox - Chatterbox

HackTheBox - Falafel

HackTheBox - Falafel

How To Create Empire Modules

How To Create Empire Modules

HackTheBox - Nightmare

HackTheBox - Nightmare

HackTheBox - Nightmarev2 - Speed Run/Unintended Solutions

HackTheBox - Nightmarev2 - Speed Run/Unintended Solutions

HackTheBox - Bart

HackTheBox - Bart

HackTheBox - Aragog

HackTheBox - Aragog

HackTheBox - Valentine

HackTheBox - Valentine

HackTheBox - Silo

HackTheBox - Silo

HackTheBox - Rabbit

HackTheBox - Rabbit

HackTheBox - Celestial

HackTheBox - Celestial

HackTheBox - Stratosphere

HackTheBox - Stratosphere

HackTheBox - Poison

HackTheBox - Poison

HackTheBox - Canape

HackTheBox - Canape

HackTheBox - Olympus

HackTheBox - Olympus

HackTheBox - Sunday

HackTheBox - Sunday

HackTheBox - Fighter

HackTheBox - Fighter

HackTheBox - Bounty

HackTheBox - Bounty

More on: AI Security

View skill →

Managing Threat Intelligence with Cortex XSOAR

SECURE Your App with Roles and Permissions in Spring Security!

SECURE Your App with Roles and Permissions in Spring Security!

TheCodeAlchemist

Pete Bryan - Scaling Jupyter Notebooks for global scale security analysis | JupyterCon 2020

Pete Bryan - Scaling Jupyter Notebooks for global scale security analysis | JupyterCon 2020

Warning! Python Remote Keylogger (this is really too easy!)

Warning! Python Remote Keylogger (this is really too easy!)

Episode 9: Automating Single-Turn Attacks with PyRIT | AI Red Teaming 101

Episode 9: Automating Single-Turn Attacks with PyRIT | AI Red Teaming 101

Microsoft Developer

Secure Agent Authorization with OAuth 2.0 | Amazon Bedrock AgentCore | Amazon Web Services

Secure Agent Authorization with OAuth 2.0 | Amazon Bedrock AgentCore | Amazon Web Services

Amazon Web Services

Related AI Lessons

Synthesizing the Principles-Building Your Cohesive Security Blueprint

Learn to build a cohesive security blueprint by synthesizing key cybersecurity principles

Medium · Cybersecurity

Security Through Obscurity-A Clever Tactic, But a Terrible Strategy

Learn why Security Through Obscurity is a flawed strategy for protecting digital systems and what alternatives can be used instead

Medium · Cybersecurity

American Lending Center Data Breach Impacts 123,000 Individuals: What Financial Institutions Must…

American Lending Center's data breach affects 123,000 individuals, highlighting the need for financial institutions to prioritize cybersecurity

Medium · Cybersecurity

Secure by Design-Building Foundations, Not Fixing Flaws

Learn to prioritize security from the ground up to avoid costly fixes later, a crucial mindset for developers and cybersecurity professionals

Medium · Cybersecurity

Chapters (15)

Intro

1:02 Start of nmap

1:50 Discovering Cacti version and finding a vulnerability

3:50 Sending the payload from the description, discovering we need to set the X-FOR

5:00 Incrementing Host_ID and Local_Data_Ids and discovering different output

6:15 Discovering with local_data_ids set to 6 and host_id set to 1, we can get code

6:50 Showing the python exploit and showing it blindly spray, looking at the Metasp

10:40 Getting a reverse shell

11:30 Using Script to set up our PTY since python is not installed

13:40 Connecting to the MySQL Database and then cracking passwords

18:25 SSH into the box with Marcus and discovering mail on the box

20:20 Discovering Docker is old and vulnerable to CVE-2021-41091

21:55 Looking at the docker overlayfs directories, discovering we can go in them, fi

23:10 Using CapSH to escalate privileges on our docker container so we can make Bash

24:50 Executing bash -p to get root

Top 7 Free Cybersecurity Courses With Certificates | Learn Cybersecurity For Free | Simplilearn