Exploring Hackthebox Craft
Welcome to our comprehensive guide on Hackthebox Craft.
- ... box on
- Today we have Craft Beer - at least virtually. In the most interesting flavor you've ever seen. Style? Hacking. Muhahah Have ...
- Initial Foothold: Exploiting python eval function in web application API. Dumping user credentials from internal database and ...
- 00:00 - Intro 00:54 - Start of nmap, checking websites seeing old copyrights 04:10 - Discovering the HTTP Redirect on /login is ...
- 00:00 - Intro 01:00 - Start of nmap 01:55 - Taking a look at the web page 02:30 - Discovering it is NodeJS based upon the error ...
In-Depth Information on Hackthebox Craft
01:20 - Begin of recon 03:18 - Checking out the HTTPS Certificate for potential hostnames 05:10 - Looking at api. Join 00:00 - Introduction 00:54 - Start of nmap, going into why it needs sudo 04:15 - Checking Phusion Passenger version 06:15 ... 00:00 - Introduction 01:00 - Start of nmap 02:30 - Poking at the DNS Server and discovering its hostname when querying itself ...
00:00 - Introduction 01:00 - Start of nmap 03:10 - Identify JSESSIONID with nginx, but nginx appears to be configured correctly ...
In summary, understanding Hackthebox Craft gives us a better perspective.