filmov
tv
Reassembling Werkzeug's Pin - Hacking Flask Debug Mode [Part 1]
Показать описание
Flask is a really common Python web framework, and one of the features it offers is a debug mode. In this mode, when your application crashes, it gives not only the stanard stack trace, but the ability to drop into a Python repl or shell at that point and run commands. Any pentester / hacker immediately perks up at this mention, because that's just RCE. Flask knew this was dangerous, with all sorts of warnings not to run this in production, but it still happened. In 2015 with version 0.11, Flask added a pin feature to limit access to the terminal, but the pin is calculated based on information on the running system. In this video, we're going to:
- start with a really simple flask application and show debug mode
- look at the werkzeug code that generates the pin
- look at the common guides out there for hacking the pin
- show how they don't take into account what happens with the script is started with a server like gunicorn
- show how to get the pin in these cases.
[00:00] Introduction
[01:44] Introduction to HelloWorld app
[02:19] Create virtual env
[03:05] Running app
[04:47] Putting app in debug mode
[06:00] Looking at Werkzeug debug source code
[07:38] Hacktricks generation page / script
[08:05] Generating the pin
[12:40] Second example run with Gunicorn
[15:34] Pin change with WSGI start
[17:54] Applying to unknown application
#pentest #ctf #bugbounty #python #flask #werkzeug
- start with a really simple flask application and show debug mode
- look at the werkzeug code that generates the pin
- look at the common guides out there for hacking the pin
- show how they don't take into account what happens with the script is started with a server like gunicorn
- show how to get the pin in these cases.
[00:00] Introduction
[01:44] Introduction to HelloWorld app
[02:19] Create virtual env
[03:05] Running app
[04:47] Putting app in debug mode
[06:00] Looking at Werkzeug debug source code
[07:38] Hacktricks generation page / script
[08:05] Generating the pin
[12:40] Second example run with Gunicorn
[15:34] Pin change with WSGI start
[17:54] Applying to unknown application
#pentest #ctf #bugbounty #python #flask #werkzeug
0:19:10
Reassembling Werkzeug's Pin - Hacking Flask Debug Mode [Part 1]
0:20:59
Reassembling Werkzeug's Pin - Getting RCE in HackTheBox Agile [Part 2]
0:00:45
How to use a wave rake to open a padlock
0:00:29
AMD Sempron Cpu processor .Removing pins For Gold Recovery
0:00:14
Ai robots taking over ping pong 👀 #shorts
0:15:27
Workerbee Walkthrough (Werkzeug Debug Pin generation)
0:00:59
How to repair a lathe machine cack gear #shorts
0:00:15
Rope hack to remember #tipsandtricks #usefulhacks #diy #easy #trending #tipsandtools #tooltips #tips
1:11:36
Agile - Linux Machine (HackTheBox) -lfi,werkzeug,CVE-2023-22809,EDTOR
0:00:40
Crazy High RPM Fan 😱 wait for Results #shorts #viral
0:00:21
How a mini dc motor work - How DC Motor works!! #shorts DC motor testing
0:00:12
Don't Throw Used Shuttle /Reuse Badminton Shuttle/Creative idea /Creativity /Waste to Best /Key...
0:00:42
Black & Decker ScumBuster Kit Cordless Tub & Tile Scrubber SB400 VersaPak WORKS
0:01:00
Cricket World Cup Leather Ball Making #viral #trending #reels #shorts #cricket
0:00:15
The worlds most dangerous pocket knife, Wranglerstar, professional homeowner
0:39:07
Unerwartet - Probleme beim Zusammenbau des DIY Ryzen 3700x
0:00:13
homemade rc helicopter tail rotor testing #making #diy
0:04:10
Unlocking the Secrets of Soldering: Few People Know About This Secret Of Soldering Iron And Salt
0:00:23
How to rotate our rotatable right angle connector
0:04:47
MOTOR PUZZLE! Restoring A Hammer Drill Part 6 - Repairing / Rebuilding The SDS Chuck #HowTo #DIY
0:01:00
How To Make Drone from DC Motor #hackerjp #shorts
0:05:17
New Tool Invention For Intelligent and Exceptional Woodworking
0:00:36
#Rexroth #Poclain MCR5A470 #testing High Torque Hydraulic radial Motor
1:05:05
HackTheBox Agile | Detailed Walkthrough
Комментарии