HackTheBox - Unattended
01:00 - Begin of recon
03:30 - Running GoBuster to discover /dev and
06:50 - Checking out the web application
07:55 - Discovering SQL Injection in ID and playing with it
11:45 - Running SQLMap to dump pieces of the database
14:55 - Nginx Misconfiguration, missing trailing slash
19:10 - Downloading source code of the application
21:20 - Exploring the source of the application
25:47 - Specifying an error string in SQLMap to have it do boolean logic versus time-based
27:00 - Installing a Docker LAMP Server to run the web application
45:40 - Finally got the application running locally (Missed a comma which created a lot more work)
46:15 - Analyzing the SQL Injection with Debug turned on to see how it works
50:00 - Explanation of gaining code execution through an LFI PHP Cookies
53:00 - Exploring the cookie
55:40 - Have code execution on our docker, lets exploit the server
01:00:00 - Reverse Shell returned
01:02:35 - Exploring MySQL database and escalatin
5 months ago 00:00:00 1
6 months ago 00:04:06 1
7 months ago 00:32:44 18
7 months ago 00:34:38 2
7 months ago 01:27:34 5
7 months ago 00:37:18 6
7 months ago 00:41:25 5
7 months ago 01:46:13 2
7 months ago 01:12:42 3
7 months ago 00:26:29 1
7 months ago 02:06:46 2
7 months ago 00:54:43 11
7 months ago 02:05:30 1
7 months ago 00:33:44 1
8 months ago 00:27:16 1
8 months ago 00:30:39 1
8 months ago 11:21:04 1
10 months ago 05:30:24 3
10 months ago 01:02:06 16
10 months ago 00:16:21 18
10 months ago 02:09:39 14
11 months ago 00:29:19 2
11 months ago 00:39:17 7
11 months ago 00:42:37 10
