all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

HackTheBox - Writeup Builder [Retired]

Add to bookmarks
April 27, 2024, 4:04 p.m. | Guilherme Martins

DEV Community dev.to




Hackthebox


Neste writeup iremos explorar uma máquina linux de nível medium chamada Builder que aborda as seguintes vulnerabilidades e técnicas de exploração



  • CVE-2024-23897 (Jenkins Arbitrary File Read)

  • Sensitive Data Exposure





Recon e user flag


Iremos iniciar realizando uma varredura utilizando o nmap para visualizar as portas abertas em nosso alvo:



┌──(root㉿kali)-[/home/kali/hackthebox/machines-linux/builder]
└─# nmap -sV --open -Pn 10.129.220.88
Starting Nmap 7.93 ( https://nmap.org ) at 2024-02-13 12:15 EST
Nmap scan report for 10.129.220.88
Host is up (0.26s latency).
Not shown: 998 …

builder cve cve-2024 cve-2024-23897 cybersecurity data data exposure exposure file flag hackthebox home jenkins kali linux machines medium nmap recon root security sensitive sensitive data sensitive data exposure vulnerabilities writeup

Visit resource

More from dev.to / DEV Community

@New an hour ago | dev.to
build builder class dependency +8
How to Generate Link Previews in React and Nodejs? 3 hours ago | dev.to
availability clicking data development +16
Mastering Secure CI/CD for ECS with GitHub Actions 6 hours ago | dev.to
actions build cicd devops +15
Advantages of Outsourcing Server Management 10 hours ago | dev.to
businesses companies competitive critical +19
Understanding Spillage in Cyber Awareness 11 hours ago | dev.to
awareness can classified cyber +17
Hack4Bengal College Edition 13 hours ago | dev.to
blog college exciting experts +14
What is CISA & How to get certified with CISA? 14 hours ago | dev.to
auditor called can certified +23
Advanced Topics in E2E Testing Introduction 18 hours ago | dev.to
accessibility advanced application applications +22
Security news weekly round-up - 17 May 2024 22 hours ago | dev.to
article articles campaign emails +16

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Security Operations Manager-West Coast

@ The Walt Disney Company | USA - CA - 2500 Broadway Street
View on infosec-jobs.com

Vulnerability Analyst - Remote (WFH)

@ Cognitive Medical Systems | Phoenix, AZ, US | Oak Ridge, TN, US | Austin, TX, US | Oregon, US | Austin, TX, US
View on infosec-jobs.com

Senior Mainframe Security Administrator

@ Danske Bank | Copenhagen V, Denmark
View on infosec-jobs.com