Hack The Box - Flight
00:00 - Introduction
01:00 - Start of Nmap
03:00 - Playing with the web page, but everything is static doing a VHOST Bruteforce to discover
07:10 - Discovering the view parameter and suspecting File Disclosure, testing by including and seeing the source code
09:20 - Since this is a Windows, try to include a file off a SMB Share and steal the NTLMv2 Hash of the webserver then crack it
13:30 - Running CrackMapExec (CME) checking shares, doing a Spider_Plus to see the files in users
18:30 - Running CrackMapExec (CME) to create a list of users on the box then doing a password spray to discover a duplicate password
20:20 - Checking the shares with and discovering we can write to the Shared Directory
21:30 - Using NTLM_Theft to create a bunch of files that would attempt to steal NTLM Hashes of users when browsing to a directory getting ’s creds with
26:18 - can write to Web, dropping a reverse shell
29:30 - Reverse shell r
7 days ago 00:04:15 1
2 weeks ago 00:21:15 1
2 weeks ago 00:02:08 1
1 month ago 00:15:09 1
3 months ago 00:07:06 1
3 months ago 00:29:54 3
3 months ago 00:01:33 2
3 months ago 00:02:43 1
3 months ago 00:25:49 2
3 months ago 00:12:16 1
4 months ago 00:38:45 4
4 months ago 00:32:55 1
4 months ago 00:02:35 2
4 months ago 00:03:12 1
4 months ago 00:02:42 1
5 months ago 00:02:32 2
5 months ago 00:02:15 1
5 months ago 00:02:32 1
5 months ago 00:02:30 1
5 months ago 00:02:28 1
5 months ago 00:02:26 1
5 months ago 00:02:11 2
5 months ago 00:02:43 1
5 months ago 00:02:21 1
