HTB: Blunder 0xdf hacks stuff

Por um escritor misterioso
Last updated 25 dezembro 2024
HTB: Blunder  0xdf hacks stuff
Blunder starts with a blog that I’ll find is hosted on the BludIt CMS. Some version enumeration and looking at releases on GitHub shows that this version is vulnerable to a bypass of the bruteforce protections, as well as an upload and execute filter bypass on the PHP site. I’ll write my own scripts for each of these, and use them to get a shell. From there, I’ll find creds for the next user, where I’ll find the first flag. Now I can also access sudo, where I’ll see I can run sudo to get a bash shell as any non-root user. I’ll exploit CVE-2019-14287 to run that as root, and get a root shell.
HTB: Blunder  0xdf hacks stuff
Bug Bytes #169 - Psychic signatures, Pwning Cloudflare, Z-winK University & The Bug Hunter's Methodology for App Analysis - Intigriti
HTB: Blunder  0xdf hacks stuff
2021 OSCP Write -up - HacktheBox
HTB: Blunder  0xdf hacks stuff
Interview with Ippsec
HTB: Blunder  0xdf hacks stuff
Blunder-HTB. Normally blunder means a stupid mistake…, by Dhwani Patel
HTB: Blunder  0xdf hacks stuff
Posts by Category
HTB: Blunder  0xdf hacks stuff
HackTheBox: Blunder write-up
HTB: Blunder  0xdf hacks stuff
HackTheBox: Blunder write-up
HTB: Blunder  0xdf hacks stuff
HTB — Blunder Walkthrough. Information Gathering and Enumeration:, by Clarence Subia
HTB: Blunder  0xdf hacks stuff
0xdf (@0xdf_) / X
HTB: Blunder  0xdf hacks stuff
CTF Players – Telegram
HTB: Blunder  0xdf hacks stuff
HackTheBox – Blunder Ivan's IT learning blog

© 2014-2024 startwindsor.com. All rights reserved.