Socket | Malayalam Tutorial | Hack the Box
1 year ago
14
Socket is a medium linux box, which hosts a webserver for scanning QR codes on port 80. On downloading the application we'll identify its trying to connect to vhost on port 5789. On exploiting sql injection on sqlite we can leak the credentials for the user. Root access can be gained by exploiting the loopholes in pyInstaller by including root files in spec files.
00:40 nmap
01:40 website
03:05 downloading the app
04:43 Analyzing the app
07:16 ws.qreader.htb
09:25 redirecting the traffic via burp
12:45 sql injection on sqlite
18:35 admin hash
21:24 identifying user
27:00 exploiting pyinstaller
Loading comments...
-
3:22:32
PandaSub2000
3 days agoPlatformer ExtravaPandza | ULTRA BEST AT GAMES (Original Live Version)
22.7K4 -
5:43:19
Bitcoin Magazine
10 hours agoLIVE: MICHAEL SAYLOR'S $100K NYE BITCOIN PARTY
63.6K5 -
5:06:15
AirCondaTv Gaming
16 hours ago $32.89 earnedOnce Human - New Year. New Meta. Happy New Year!
114K14 -
1:00:37
Bright Insight
10 days agoOlmec Heads are Evidence of Lost Ancient Advanced Civilization
128K229 -
13:43
Cooking with Gruel
2 days agoCreamy Saffron Risotto
103K20 -
18:38
DeVory Darkins
1 day ago $30.08 earnedTrump Makes HUGE Announcement that may spark GOP Battle
91.8K82 -
2:13:05
The Nerd Realm
15 hours ago $7.45 earnedNew Years Eve! Fortnite Hunters w/ YOU! Creator Code: NERDREALM
68.4K5 -
11:04:44
FusedAegisTV
1 day agoNYE Eve! - 2025 Incoming 🎉 - 12hr Variety Stream!
136K7 -
1:18:52
Awaken With JP
18 hours agoSomehow The World DIDN’T End This Year! - LIES Ep 72
167K93 -
1:19:34
Michael Franzese
16 hours agoWhat 2024 Taught Us About the Future?
133K33