HackTheBox - Inject

preview_player
Показать описание
00:00 - Introduction
00:58 - Start of nmap
01:45 - Trying to identify the technology running the webapp, 404 page reveals it is likely tomcat
03:00 - Running Gobuster, then checking out the page
04:00 - Uploading an image and discovering an file disclosure vulnerability
07:45 - Using Snyk to identify vulnerabilities, but first we have to install Maven
10:45 - Exploiting CVE-2022-22963 Manually
11:55 - Playing with the exploit getting a reverse shell by dropping a file on the box (easy), then doing it without touching disk
19:50 - Shell as Phil
22:00 - Using find to show files owned by a group and finding a /opt/automation/tasks directory with ansible stuff
24:10 - Running Pspy to identify ansible is running on a cron job and executing any playbook in the automation directory
26:30 - Creating a playbook that sends us a shell
  1. IppSec
Рекомендации по теме
HackTheBox - Inject 0:28:13

HackTheBox - Inject

Inject HTB Walkthrough 0:17:36

Inject HTB Walkthrough | Solution | Hack The Box

Hack The Box 0:29:10

Hack The Box - Inject || HTB - Inject || HackTheBox - Inject || Inject Walkthrough

Hack The Box: 0:49:56

Hack The Box: Inject

Inject (HACK THE 0:13:39

Inject (HACK THE BOX) walkthrough

Command Injection to 0:00:54

Command Injection to RCE! #hacked #cybersecurity #hackthebox

HackTheBox 'Business CTF' 0:16:02

HackTheBox 'Business CTF' - Time - Command Injection

HackTheBox | HTB 0:18:43

HackTheBox | HTB inject machine walkthrough (Easy)

SQL Injection | 0:05:26

SQL Injection | HackTheBox | Appointment

SQLite Blind SQL 0:35:25

SQLite Blind SQL Injection - HackTheBox Cyber Apocalypse CTF

HackTheBox - MonitorsThree 0:49:13

HackTheBox - MonitorsThree

Hack The Box 0:23:18

Hack The Box - Inject (Walkthrough)

Command Injection & 0:08:27

Command Injection & Path Hijacking - Previse @ HackTheBox

Spring4Shell Demo (Inject 0:06:44

Spring4Shell Demo (Inject on HackTheBox)

Basic SQL Injection 0:24:38

Basic SQL Injection Tutorial - Appointment HackTheBox

Inject | HackTheBox 0:12:23

Inject | HackTheBox

Inject | Hack 0:33:15

Inject | Hack the Box | malayalam | Walkthrough

Inject HackTheBox 0:24:55

Inject HackTheBox

awk Injection via 0:15:29

awk Injection via JWT Forgery [HackTheBox - Awkward]

HackTheBox ~ Tenet 0:51:21

HackTheBox ~ Tenet walkthrough (php object inject/shell race condition)

Bypassing addslashes() using 0:07:13

Bypassing addslashes() using format string to get SQL Injection | Baby-sql @ HackTheBox

[FR] HackTheBox - 0:22:23

[FR] HackTheBox - Cronos - MEDIUM (Sqlmap + Command injection + Pwnkit)

CVE-2022-23935 Analysis: Command 0:10:01

CVE-2022-23935 Analysis: Command Injection in Exiftool [HackTheBox - Investigation]

Inject | Hack 0:00:16

Inject | Hack the box

Комментарии
Автор

during my last pentest i discovered a php lfi opening directories as well, it wasn't particularly clean output but it worked

lumikarhu
Автор

Hello ippsec, I also produce content about ctf's here in Brazil and a while ago I put this inject challenge, not knowing that I could only do it when the machine was retired and I ended up suffering a strike. Do you know if I can repost her here on youtube without violating htb guidelines, considering that she has already joined the retired? Thanks for the reply and you are an excellent content producer!

KrakenAcademy
Автор

Wawoo tq sir, i learn a lot your videos....

sandepyadav
Автор

What is the extension you used in visual code ?

tanmaykumar
Автор

im just starting in this shit and its lookin like wizardry rn

xPSYCHBYTES
Автор

How can you send the request so fast in the repeater tab? What is the shortcut

xhech
Автор

Iclude maven and pspy on playbook thnx

amieemaya
Автор

I find this stuff so interesting! How do you even begin getting into this?

teets
Автор

@IppSec we need a special video on using Shodan for hackers/bug bounty hunters

huzaifamuhammad