Socket | Malayalam Tutorial | Hack the Box
2 years ago
19
Socket is a medium linux box, which hosts a webserver for scanning QR codes on port 80. On downloading the application we'll identify its trying to connect to vhost on port 5789. On exploiting sql injection on sqlite we can leak the credentials for the user. Root access can be gained by exploiting the loopholes in pyInstaller by including root files in spec files.
00:40 nmap
01:40 website
03:05 downloading the app
04:43 Analyzing the app
07:16 ws.qreader.htb
09:25 redirecting the traffic via burp
12:45 sql injection on sqlite
18:35 admin hash
21:24 identifying user
27:00 exploiting pyinstaller
Loading comments...
-
LIVE
Barry Cunningham
1 hour agoBREAKING NEWS: COUNTDOWN TO COMMUNISM! ELECTION RESULTS SHOW!
1,696 watching -
LIVE
DeVory Darkins
1 hour agoLIVE NOW: 2025 Election results and Exit Polls AMA
620 watching -
LIVE
The Charlie Kirk Show
2 hours agoJUDGMENT DAY 2025: The Election Results Stream
7,320 watching -
LIVE
MattMorseTV
3 hours ago $30.32 earned🔴Election Day LIVE COVERAGE.🔴
1,818 watching -
LIVE
Sarah Westall
3 hours agoGrooming is Protected and Encouraged by the System – Michelle Peterson and Mike Adamovich
107 watching -
LIVE
Akademiks
50 minutes agoKendrick tries to Flip the Bots on DRAKE? WHo Beats Jay z in a verzuz. Blueface finally free!
967 watching -
LIVE
Professor Nez
6 hours ago🚨ELECTION NIGHT 2025 LIVE! Massive Upsets Brewing in New York, New Jersey & Virginia!
167 watching -
LIVE
Due Dissidence
9 hours agoLIVE: ELECTION RESULTS From NYC, NJ, and VA - Trump Approval CRATERS, Kash's Private Jet CRASH OUT
1,279 watching -
12:50
Demons Row
2 hours ago $0.46 earnedBikers of New Jersey 💀🏍️ Pagans, Thunder Guards, and Thug Riders
3.88K1 -
42:31
Stephen Gardner
5 hours ago🔥Old Obama Video RESURFACES - His Own Words CONDEMNED Him! Trump Gains MASSIVE Momentum!!
11.3K17