HackTheBox - Snoopy
00:00 - Introduction
01:00 - Start of nmap, discovering ssh/dns/http
02:30 - Taking a look at the website
04:00 - Discovering a message about DNS, taking a look at the DNS and discovering zone transfers are enabled
09:40 - Identifying the website is running with PHP Enabled, then running gobuster
13:00 - Attacking the file download and discovering File Disclosure
15:35 - We got lucky discovering the File Disclosure filter bypass, using FFUF which would be make catching this more consistent
19:30 - Automating the File Disclosure by creating a python script
24:30 - Looking at files on the target, discovering the DNS Configuration which has the RNDC Key to update DNS
30:40 - Looking at the NSUPDATE Man page and then adding a the DNS Record and pointing it to us
34:24 - Using python to run a SMTP Server and then having Mattermost’s forgot password email us the password reset
39:50 - Using the Mattermost bot to provision a server via SSH which causes it to SSH b
3 months ago 00:00:00 1
5 months ago 00:04:06 1
5 months ago 00:32:44 18
5 months ago 00:34:38 2
5 months ago 01:27:34 5
5 months ago 00:37:18 6
5 months ago 00:41:25 5
5 months ago 01:46:13 2
5 months ago 01:12:42 3
5 months ago 00:26:29 1
5 months ago 02:06:46 2
5 months ago 00:54:43 11
5 months ago 02:05:30 1
6 months ago 00:33:44 1
6 months ago 00:27:16 1
6 months ago 00:30:39 1
7 months ago 11:21:04 1
8 months ago 05:30:24 3
8 months ago 01:02:06 16
8 months ago 00:16:21 18
8 months ago 02:09:39 14
9 months ago 00:29:19 2
10 months ago 00:39:17 7
10 months ago 00:42:37 10
