HackTheBox - Usage

00:00 - Introduction 00:50 - Start of nmap 02:00 - Discovering the page is Laravel based upon cookies 05:30 - Discovering the SQL Injection in Reset Password, then running SQLMap screwing up our results because we logged out in middle of SQLMap 18:50 - Cracking the user out of admin_users 20:00 - Logging into admin.usage.htb and discovering a vulnerable Laravel Admin, which is vulnerable to PHP File Upload in the avatar 24:10 - Shell returned on the box 28:30 - Discovering we can run 7z with sudo and the Wildcard Spare Trick will let us read files

Join Today
HackTheBox - iClean
▶︎

HackTheBox - iClean

HackTheBox - Topology
▶︎

HackTheBox - Topology

usage HTB walkthrough | SQLmap tutorial for ethical hacking
▶︎

usage HTB walkthrough | SQLmap tutorial for ethical hacking

HackTheBox - Cicada
▶︎

HackTheBox - Cicada

HackTheBox - Ouija
▶︎

HackTheBox - Ouija

Sliver C2 Basics: Linux Implants | HackSmarter Walkthrough
▶︎

Sliver C2 Basics: Linux Implants | HackSmarter Walkthrough

HackTheBox - Headless
▶︎

HackTheBox - Headless

I Don't Think I Can Go Back To Windows...
▶︎

I Don't Think I Can Go Back To Windows...

HackTheBox - Perfection
▶︎

HackTheBox - Perfection

HackTheBox - Mailing
▶︎

HackTheBox - Mailing

the tools that real hackers use
▶︎

the tools that real hackers use

HackTheBox - Codify
▶︎

HackTheBox - Codify

HackTheBox - Soulmate
▶︎

HackTheBox - Soulmate

Something is jamming GPS over Europe. Here's what we found
▶︎

Something is jamming GPS over Europe. Here's what we found

HackTheBox - Pandora
▶︎

HackTheBox - Pandora

Every Level of Reverse Engineering Explained
▶︎

Every Level of Reverse Engineering Explained

How Hackers Use Burp Suite to Get Into Websites
▶︎

How Hackers Use Burp Suite to Get Into Websites

HackTheBox - Sau
▶︎

HackTheBox - Sau

How Google Tracks Everything You Do and How to Stop It
▶︎

How Google Tracks Everything You Do and How to Stop It

The Insane Genius of a Formula 1 Gearbox
▶︎

The Insane Genius of a Formula 1 Gearbox