HackTheBox - Sau

IppSec · Beginner ·🔐 Cybersecurity ·2y ago

00:00 - Intro 00:40 - Start of nmap 02:00 - Examining the website, playing with the basket, trying SSTI/SQL Injection special characters 04:30 - Looking at the settings, discovering we can perform a SSRF and get the response back. Grabbing localhost:80 06:10 - The local website runs maltrail 0.53, examining the exploit then manually exploiting it to get a shell 09:10 - Shell returned, checking if we really needed to encode the payload 13:00 - When systemctl runs status, it sends us to less which we can escape out of and run as root

Watch on YouTube ↗ (saves to browser)

Chapters (7)

Intro

0:40 Start of nmap

2:00 Examining the website, playing with the basket, trying SSTI/SQL Injection spec

4:30 Looking at the settings, discovering we can perform a SSRF and get the respons

6:10 The local website runs maltrail 0.53, examining the exploit then manually expl

9:10 Shell returned, checking if we really needed to encode the payload

13:00 When systemctl runs status, it sends us to less which we can escape out of and

Playlist

Uploads from IppSec · IppSec · 0 of 60

← Previous Next →

HHC2016 - Dungeon

HHC2016 - Dungeon

HHC2016 - Terminal Speedrun

HHC2016 - Terminal Speedrun

HHC2016 - Debug

HHC2016 - Debug

HHC2016 - Exception

HHC2016 - Exception

HHC2016 - Analytics

HHC2016 - Analytics

HHC2016 - Getting Coins

HHC2016 - Getting Coins

HackTheBox - Popcorn

HackTheBox - Popcorn

HackTheBox - October

HackTheBox - October

HackTheBox - Arctic

HackTheBox - Arctic

HackTheBox - Tenten

HackTheBox - Tenten

HackTheBox - CronOS

HackTheBox - CronOS

HackTheBox - Brainfuck

HackTheBox - Brainfuck

HackTheBox - Beep

HackTheBox - Beep

HackTheBox - Bastard

HackTheBox - Bastard

HackTheBox - Bank

HackTheBox - Bank

HackTheBox - Joker

HackTheBox - Joker

HackTheBox - Haircut

HackTheBox - Haircut

HackTheBox - Lazy

HackTheBox - Lazy

Camp CTF 2015 - Bitterman

Camp CTF 2015 - Bitterman

HackTheBox - Devel

HackTheBox - Devel

Reversing Malicious Office Document (Macro) Emotet(?)

Reversing Malicious Office Document (Macro) Emotet(?)

HackTheBox - Granny and Grandpa

HackTheBox - Granny and Grandpa

HackTheBox - Pivoting Update: Granny and Grandpa

HackTheBox - Pivoting Update: Granny and Grandpa

HackTheBox - Optimum

HackTheBox - Optimum

HackTheBox - Charon

HackTheBox - Charon

HackTheBox - Sneaky

HackTheBox - Sneaky

HackTheBox - Holiday

HackTheBox - Holiday

HackTheBox - Apocalyst

HackTheBox - Apocalyst

HackTheBox - Europa

HackTheBox - Europa

Introduction to tmux

Introduction to tmux

HackTheBox - Blocky

HackTheBox - Blocky

HackTheBox - Nineveh

HackTheBox - Nineveh

HackTheBox - Jail

HackTheBox - Jail

HackTheBox - Blue

HackTheBox - Blue

HackTheBox - Calamity

HackTheBox - Calamity

HackTheBox - SolidState

HackTheBox - SolidState

HackTheBox - Shrek

HackTheBox - Shrek

HackTheBox - Mirai

HackTheBox - Mirai

HackTheBox - Shocker

HackTheBox - Shocker

HackTheBox - Mantis

HackTheBox - Mantis

HackTheBox - Node

HackTheBox - Node

HackTheBox - Kotarak

HackTheBox - Kotarak

HackTheBox - Enterprise

HackTheBox - Enterprise

HackTheBox - Sense

HackTheBox - Sense

HackTheBox - Minion

HackTheBox - Minion

VulnHub - Sokar

VulnHub - Sokar

VulnHub - Pinkys Palace v2

VulnHub - Pinkys Palace v2

HackTheBox - Inception

HackTheBox - Inception

Vulnhub - Trollcave 1.2

Vulnhub - Trollcave 1.2

HackTheBox - Ariekei

HackTheBox - Ariekei

HackTheBox - Bashed

HackTheBox - Bashed

HackTheBox - Flux Capacitor

HackTheBox - Flux Capacitor

HackTheBox - Jeeves

HackTheBox - Jeeves

HackTheBox - Tally

HackTheBox - Tally

HackTheBox - CrimeStoppers

HackTheBox - CrimeStoppers

HackTheBox - Fulcrum

HackTheBox - Fulcrum

HackTheBox - Chatterbox

HackTheBox - Chatterbox

HackTheBox - Falafel

HackTheBox - Falafel

HackTheBox - Nibbles

HackTheBox - Nibbles

Emergency Webcast Briefing: Axios NPM Supply Chain Compromise

Emergency Webcast Briefing: Axios NPM Supply Chain Compromise