HackTheBox - Nocturnal

Name: HackTheBox - Nocturnal
Uploaded: 2025-08-16T15:24:00Z
Channel: IppSec
Description: 00:00 - Introduction 00:50 - Start of nmap 02:10 - Running gobuster to find PHP Files 04:15 - Uploading a file and playing with the file upload function...

IppSec · Beginner ·🛡️ AI Safety & Ethics ·7mo ago

00:00 - Introduction 00:50 - Start of nmap 02:10 - Running gobuster to find PHP Files 04:15 - Uploading a file and playing with the file upload functionality 08:00 - Playing with the username variable, discovering we can list files of other users 09:08 - Fuzzing usernames to see if any other user has uploaded files, getting an document that contains a password for amanda 13:00 - Logging in as Amanda, who has access to admin. It gives us a way to look at source code 15:22 - Looking at the sanitization function, finding a dangerous non-blocked character (new line) which gives us command injectio…

Watch on YouTube ↗ (saves to browser)

Chapters (13)

Introduction

0:50 Start of nmap

2:10 Running gobuster to find PHP Files

4:15 Uploading a file and playing with the file upload functionality

8:00 Playing with the username variable, discovering we can list files of other use

9:08 Fuzzing usernames to see if any other user has uploaded files, getting an docu

13:00 Logging in as Amanda, who has access to admin. It gives us a way to look at so

15:22 Looking at the sanitization function, finding a dangerous non-blocked characte

25:30 Using curl to download and execute a shell

29:10 Got a shell on the box, dump the database, crack passwords and discover Tobias

32:45 Discovering an application on port 8080, using SSH to forward the port and log

35:20 Exploiting the ISPConfig Application with a known CVE

42:50 Beyond Root, playing with the command injection vulnerability

Playlist

Uploads from IppSec · IppSec · 0 of 60

← Previous Next →