Understanding Hackthebox Smasher2
Exploring Hackthebox Smasher2 reveals several interesting facts. 00:58 - Begin of Recon 02:30 - Using Wireshark to see why Nmap said HTTP 403 06:15 - Running GoBuster to identify /backup ...
Key Takeaways about Hackthebox Smasher2
- 01:05 - Begin of Recon 01:50 - Taking a look at the page, noticing the site is PHP, running GoBuster to find other PHP Files. 03:45 ...
- 00:40 - Begin of nmap 02:31 - Discovering MyApp in the HTML Source 03:30 - Examining MyApp on port 1337 05:30 - Opening ...
- 00:00 - Introduction 01:00 - Start of nmap 03:10 - Identify JSESSIONID with nginx, but nginx appears to be configured correctly ...
- 00:00 - Intro 00:18 - Start of nmap, scanning all ports with min-rate 02:35 - Browsing to the web page and taking a trip down ...
- 00:00 - Introduction shorter than normal since I did this blind 00:15- Start of nmap 01:00 - Looking at the webpage, see CIF ...
Detailed Analysis of Hackthebox Smasher2
00:00 - Intro 01:15 - Start of nmap 02:30 - Checking out the webpages, find Gitlab and Page about a custom chrome 03:25 ... 00:00 - Intro 01:10 - Start of the box, running nmap with all ports. 03:00 - Using a Google Image Search to map icons with ... 00:00 - Introduction 00:45 - Start of nmap 03:00 - Doing some low-priv AD recon with NetExec (SMB, MSSQL, User Dump, Shares, ...
00:00 - Intro 01:58 - Begin Recon (NMAP) 04:19 - GoBuster HTTP + HTTPS 06:35 - Accessing Pages 07:05 - Using Hydra against ...
Stay tuned for more updates related to Hackthebox Smasher2.