Inject | Hack the Box | malayalam | Walkthrough
Inject is easy linux box which hosts a website port 8080. LFI vulnerability allows us to read the source code for the site and also another user's creds. Leaked source allow use to identify RCE which enables us the initial access to the box. Then exploiting the cron we will gain root access.
0:00 nmap
01:07 enumeration
02:22 file upload
02:47 lfi
08:52 RCE
11:02 frank user
14:15 Phil
19:17 Root
https://affiliate.hackthebox.com/29icft3zq24o
Disclaimer :
All video’s and tutorials are for informational and educational purposes only. The tutorials and videos provided there is only for those who are interested to learn about Cyber security, Penetration Testing and malware analysis. Hacking tutorials is against misuse of the information and we strongly suggest against it.
All tutorials and videos have been made using our own routers, servers, websites and other resources, they do not contain any illegal activity. We do not promote, encourage, support or excite any illegal activity or hacking without written permission in general. We want to raise security awareness and inform our readers on how to prevent themselves from being a victim of hackers. If you plan to use the information for illegal purposes, please leave this website now. We cannot be held responsible for any misuse of the given information.
1. Information provided on this Channel are for educational purposes only. This channel is no way responsible for any misuse of the information.
2. This Channel is all about ethical hacking.
3. This Channel is totally meant for providing information on “Computer Security”, “Computer Programming” and other related computer tricks and tweaks topics and is no way related towards the terms “CRACKING” or “HACKING” (Unethical).
4. I’ll include few blogs which may contain the information related to ‘Hacking Password’ or ‘Hacking email accounts’ or similar terms. You shall not misuse the information the information to gain unauthorised access. Also be aware, performing hack attempts without permission on computers that you do not own is illegal.
5. I’ll not be responsible for any direct or indirect damage caused due to the usage of the information provided on this site.
6. I reserve the right to modify the Disclaimer at any time without notice.
#parrotos
#kalilinux
#cybersecurity
#ethicalhackingmalayalam
#cybersecuritymalayalam
#lfi
#spring
-
1:35:04
Winston Marshall
2 days ago“This Wasn’t Accidental!” Maajid Nawaz SPEAKS OUT on R*PE Gangs and The REAL Cover-Up
35.4K37 -
23:46
barstoolsports
3 hours agoSurviving Barstool Drama Spills Over Into The Office | Stool Scenes
30.2K2 -
DVR
Shield_PR_Gaming
5 hours ago01/18/25. Let's chill with MMORPG and then some shooters!! Read Description! You know you want to!!
21.2K1 -
1:09:39
Tactical Advisor
4 hours agoTrump Inauguration & New Gun Releases | Vault Room Live Stream 014
23.5K2 -
11:27
Adam Does Movies
16 hours ago $5.95 earnedWolf Man Movie Review - Does It Bite?
50.1K9 -
11:57
inspirePlay
20 hours ago $9.45 earnedLongest Drive Wins! Elite Long Drivers Battle in Par 4 Elimination
84.5K12 -
8:44
RTT: Guns & Gear
22 hours ago $5.57 earnedStreamlight TLR RM2 Laser - G | The Best PCC Light
63K5 -
36:38
Athlete & Artist Show
1 month ago $3.39 earnedNCAA Hockey Was A Joke, TNT Hockey Panel Is The Best In Sports
47.8K2 -
1:00:08
Trumpet Daily
1 day ago $6.46 earnedBanning Mystery of the Ages - Trumpet Daily | Jan. 17, 2025
32.7K36 -
15:10
Chris From The 740
1 day ago $3.76 earnedEAA Girsan Disruptor X 500-Round Review: Is It Reliable?
48.1K4