Socket | Malayalam Tutorial | Hack the Box
2 years ago
19
Socket is a medium linux box, which hosts a webserver for scanning QR codes on port 80. On downloading the application we'll identify its trying to connect to vhost on port 5789. On exploiting sql injection on sqlite we can leak the credentials for the user. Root access can be gained by exploiting the loopholes in pyInstaller by including root files in spec files.
00:40 nmap
01:40 website
03:05 downloading the app
04:43 Analyzing the app
07:16 ws.qreader.htb
09:25 redirecting the traffic via burp
12:45 sql injection on sqlite
18:35 admin hash
21:24 identifying user
27:00 exploiting pyinstaller
Loading comments...
-
LIVE
MYLUNCHBREAK CHANNEL PAGE
17 hours agoIstanbul Should NOT Exist - Pt 5 of 5
420 watching -
8:27:16
SLS - Street League Skateboarding
19 days agoSLS Paris 2025 🛹 | OCTOBER 11, 2025
381K33 -
LIVE
SpartakusLIVE
5 hours ago$120,000 WZ Tourney || #1 Tournament Champion RETURNS
151 watching -
47:47
Athlete & Artist Show
5 hours agoSeason 6 Premiere, NHL Season Preview!
519 -
17:17
Advanced Level Diagnostics
19 days agoWhy won't this Mack Truck Charge!
344 -
1:33:51
Steve-O's Wild Ride! Podcast
16 days ago $10.57 earnedJohn C. Reilly's Surprising Connection To Jackass (And Beef With Weeman!)
98.5K21 -
LIVE
StoneMountain64
2 hours agoBattlefield 6 Unlocks and Challenges
50 watching -
LIVE
Total Horse Channel
10 hours agoLow Roller Reining Classic | Main Arena | October 11th, 2025
189 watching -
LIVE
GamerGril
3 hours agoZombie Fight Club 💞Dying Light The Beast💞
80 watching -
56:25
MentourPilot
1 year agoTITANIC of the Skies! - The Untold Story of Air France 447
35.8K6