HacktheBox - Inject
HacktheBox - InjectAuthor: gotNothingHere Initial EnumerationWebWe find LFI on Leak on proc fd Checking the Entrypoint file we see it is a SpringA ...
Read more
Hackthebox - Stocker

Stocker

Summary

Stocker is a medium difficulty Linux machine that features a website running on port 80 that advertises
various house furniture. Through vHost enumeration the hostname dev.stocker.htb is identified and
upon accessing it a login page is loaded that seems to be built with NodeJS . By sending JSON data and
performing a NoSQL injection, the login page is bypassed and access to an e-shop is granted. Enumeration
of this e-shop reveals that upon submitting a purchase order, a PDF is crafted that contains details about
the items purchased. This functionality is vulnerable to HTML injection and can be abused to read system
files through the usage of iframes. The index.js file is then read to acquire database credentials and owed
to password re-use users can log into the system over SSH . Privileges can then be escalated by performing
a path traversal attack on a command defined in the sudoers file, which contains a wildcard for executing
JavaScript files.

Read more
HackTheBox - Soccer
Initial Enumerationnmap123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676 ...
Read more
Hackthebox - Precious
Initial Enumerationnmap12345678910111213141516171819Starting Nmap 7.92 ( https://nmap.org ) at 2022-11-27 11:44 ISTNmap scan report for precious.h ...
Read more
Hackthebox - MetaTwo
HackTheBox - MetaTwoAuthor: Nauten WebOpening IP redirect to metapress.htb Adding the hostname to /etc/hosts and opening the page again From Proxy lo ...
Read more