HackThebox - Wifinetic
HackThebox - Wifinetic
00:00 - Introduction
01:00 - Start of nmap
02:00 - Using wget to download all files from FTP then examining files, taking notes of the usernames
05:00 - Taking a look at the backup, discovering a password in the wireless config
06:45 - Using CrackMapExec to spray SSH with our password and getting a success with netadmin
09:15 - Running LinPeas to discover Reaver has the capability cap_net_raw
13:15 - Explaining why Reaver has this capability is interesting
14:40 - Running Reaver to attempt to brute force the WPS Pin and getting the WPA PSK which is also the root password
15:30 - Start of building a bash script to spray a single password across valid users with su
22:00 - Converting our script into a Bash Function so its easier to run without touching disk
24:55 - Talking about WPS and how this exploit worked
25:30 - The first vulnerability in the WPS Pin, the eighth digit is just a checksum
28:30 - The second flaw in WPS, the PIN is broken in
1 month ago 00:32:44 1
1 month ago 00:34:38 1
1 month ago 01:27:34 1
1 month ago 00:37:18 1
1 month ago 00:41:25 1
1 month ago 01:46:13 1
1 month ago 01:12:42 1
1 month ago 00:26:29 1
1 month ago 02:06:46 1
1 month ago 00:54:43 1
1 month ago 02:05:30 1
1 month ago 00:36:09 1
2 months ago 00:33:44 1
2 months ago 00:27:16 1
2 months ago 02:00:43 1
2 months ago 00:20:43 1
2 months ago 00:30:39 1
3 months ago 00:13:24 1
3 months ago 11:21:04 1
3 months ago 07:22:03 1
4 months ago 05:30:24 3
4 months ago 01:02:06 16
4 months ago 00:16:21 18
4 months ago 02:09:39 13
