HackTheBox - Ariekei

IppSec · Beginner ·🔐 Cybersecurity ·8y ago

Skills: Ethical Hacking & Pen Testing90%

00:23 - Explaining VM Layout 01:47 - Nmap Start 05:20 - Poking at Virtual Host Routing (Beehive & Calvin) 10:25 - Fixing GoBuster to find /cgi-bin/ 11:48 - Enumerating WAF (Web Application Firewall), to see how it detects Shellshock 15:08 - Using VirtualHostRouting to navigate to Calvin.htb.htb 18:15 - Using ImageTragick to exploit Calvin 25:30 - Calvin Reverse shell returned 31:35 - Poking at /common, which allows pivot to Bastion Host 34:20 - SSH into the Bastion Host 38:45 - Explain SSH Local and Remote Port Forwarding 46:00 - Beehive Reverse Shell Returned 50:00 - Finding the root password via /common/containers/bastion-live/Dockerfile 54:50 - PrivEsc via Docker (much like the LXC shown in Calamity) 57:05 - Getting root access to filesystem ==== BOX DONE. 58:10 - Failing to get root shell via Crontab 01:06:20 - Yeah screw crontab, lets just create an ssh key.

Watch on YouTube ↗ (saves to browser)

Sign in to unlock AI tutor explanation · ⚡30

Playlist

Uploads from IppSec · IppSec · 37 of 60

← Previous Next →

HHC2016 - Analytics

HHC2016 - Analytics

HackTheBox - October

HackTheBox - October

HackTheBox - Arctic

HackTheBox - Arctic

HackTheBox - Brainfuck

HackTheBox - Brainfuck

HackTheBox - Bank

HackTheBox - Bank

HackTheBox - Joker

HackTheBox - Joker

HackTheBox - Lazy

HackTheBox - Lazy

Camp CTF 2015 - Bitterman

Camp CTF 2015 - Bitterman

HackTheBox - Devel

HackTheBox - Devel

Reversing Malicious Office Document (Macro) Emotet(?)

Reversing Malicious Office Document (Macro) Emotet(?)

HackTheBox - Granny and Grandpa

HackTheBox - Granny and Grandpa

HackTheBox - Pivoting Update: Granny and Grandpa

HackTheBox - Pivoting Update: Granny and Grandpa

HackTheBox - Optimum

HackTheBox - Optimum

HackTheBox - Charon

HackTheBox - Charon

HackTheBox - Sneaky

HackTheBox - Sneaky

HackTheBox - Holiday

HackTheBox - Holiday

HackTheBox - Europa

HackTheBox - Europa

Introduction to tmux

Introduction to tmux

HackTheBox - Blocky

HackTheBox - Blocky

HackTheBox - Nineveh

HackTheBox - Nineveh

HackTheBox - Jail

HackTheBox - Jail

HackTheBox - Blue

HackTheBox - Blue

HackTheBox - Calamity

HackTheBox - Calamity

HackTheBox - Shrek

HackTheBox - Shrek

HackTheBox - Mirai

HackTheBox - Mirai

HackTheBox - Shocker

HackTheBox - Shocker

HackTheBox - Mantis

HackTheBox - Mantis

HackTheBox - Node

HackTheBox - Node

HackTheBox - Kotarak

HackTheBox - Kotarak

HackTheBox - Enterprise

HackTheBox - Enterprise

HackTheBox - Sense

HackTheBox - Sense

HackTheBox - Minion

HackTheBox - Minion

VulnHub - Sokar

VulnHub - Sokar

VulnHub - Pinkys Palace v2

VulnHub - Pinkys Palace v2

HackTheBox - Inception

HackTheBox - Inception

Vulnhub - Trollcave 1.2

Vulnhub - Trollcave 1.2

HackTheBox - Ariekei

HackTheBox - Ariekei

HackTheBox - Flux Capacitor

HackTheBox - Flux Capacitor

HackTheBox - Jeeves

HackTheBox - Jeeves

HackTheBox - Tally

HackTheBox - Tally

HackTheBox - CrimeStoppers

HackTheBox - CrimeStoppers

HackTheBox - Fulcrum

HackTheBox - Fulcrum

HackTheBox - Chatterbox

HackTheBox - Chatterbox

HackTheBox - Falafel

HackTheBox - Falafel

How To Create Empire Modules

How To Create Empire Modules

HackTheBox - Nightmare

HackTheBox - Nightmare

HackTheBox - Nightmarev2 - Speed Run/Unintended Solutions

HackTheBox - Nightmarev2 - Speed Run/Unintended Solutions

HackTheBox - Bart

HackTheBox - Bart

HackTheBox - Aragog

HackTheBox - Aragog

HackTheBox - Valentine

HackTheBox - Valentine

HackTheBox - Silo

HackTheBox - Silo

HackTheBox - Rabbit

HackTheBox - Rabbit

HackTheBox - Celestial

HackTheBox - Celestial

HackTheBox - Stratosphere

HackTheBox - Stratosphere

HackTheBox - Poison

HackTheBox - Poison

HackTheBox - Canape

HackTheBox - Canape

HackTheBox - Olympus

HackTheBox - Olympus

HackTheBox - Sunday

HackTheBox - Sunday

HackTheBox - Fighter

HackTheBox - Fighter

HackTheBox - Bounty

HackTheBox - Bounty

More on: Ethical Hacking & Pen Testing

View skill →

HackTheBox - Photobomb

HackTheBox - Photobomb

VulnHub - Sokar

VulnHub - Sokar

HackTheBox - Multimaster

HackTheBox - Multimaster

Hacking a Smart Camera: IoT Hacking With Andrew Bellini (Part 3)

Hacking a Smart Camera: IoT Hacking With Andrew Bellini (Part 3)

The Cyber Mentor

Ethical Password Cracking

Ethical Password Cracking

Exploitation and Penetration Testing with Metasploit

Exploitation and Penetration Testing with Metasploit

Related AI Lessons

Inside Consumer DVRs — Hardware, Firmware & Network Security Evaluation

Learn about the hardware, firmware, and network security of consumer DVRs through a reverse engineering analysis of the Hikvision DS-7204HUHI-K

Medium · Cybersecurity

Cómo construimos un SOC con honeypot e IA local

Learn how to build a Security Operations Center (SOC) using honeypot and local AI to detect and prevent cyber threats

Dev.to · Yoandy Ramirez Delgado

Credentials in web applications: how to store them properly

Learn how to store credentials properly in web applications to prevent breaches

Dev.to · Ian Johnson

XSS Nedir ve Neden Hâlâ Tehlikeli? | Bir Siber Güvenlik Öğrencisinin Notları

Learn about XSS attacks and their ongoing threat to web security

Medium · Cybersecurity

Chapters (17)

0:23 Explaining VM Layout

1:47 Nmap Start

5:20 Poking at Virtual Host Routing (Beehive & Calvin)

10:25 Fixing GoBuster to find /cgi-bin/

11:48 Enumerating WAF (Web Application Firewall), to see how it detects Shellshock

15:08 Using VirtualHostRouting to navigate to Calvin.htb.htb

18:15 Using ImageTragick to exploit Calvin

25:30 Calvin Reverse shell returned

31:35 Poking at /common, which allows pivot to Bastion Host

34:20 SSH into the Bastion Host

38:45 Explain SSH Local and Remote Port Forwarding

46:00 Beehive Reverse Shell Returned

50:00 Finding the root password via /common/containers/bastion-live/Dockerfile

54:50 PrivEsc via Docker (much like the LXC shown in Calamity)

57:05 Getting root access to filesystem

58:10 Failing to get root shell via Crontab

1:06:20 Yeah screw crontab, lets just create an ssh key.

Wireshark Tutorial For Beginners | How Wireshark Works | Packet Analysis Explained | Simplilearn