all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Busqueda — Hack The Box

Add to bookmarks
July 4, 2023, 12:51 p.m. | Rahul Kumar

System Weakness - Medium systemweakness.com

Busqueda — Hack The Box

In this write-up, we will solve a box on hackthebox called Busqueda.

Nmap Scan

nmap -sC -sV -Ao nmap/Busqueda 10.10.11.208

we got an ssh port and an HTTP port open.

Web server enumeration

first, get the hostname in the /etc/hosts file.

echo "10.10.11.208 searcher.htb" >> /etc/hosts

if we see the technology used on the webpage

it uses Searchor 2.4.0

after some googling found that it is vulnerable to remote command injection.

got a POC from …

hacking hackthebox hackthebox-writeup htb-writeup infosec

Visit resource

More from systemweakness.com / System Weakness - Medium

How to Streamline Zombie Account Management? 4 hours ago | systemweakness.com
access control access management account build +17
Understanding Cybersecurity Threats: Safeguarding Against Digital Perils 5 hours ago | systemweakness.com
article consequences critical cyber +21
Hosting Websites In DARKWEB 1 day, 3 hours ago | systemweakness.com
darkweb hacking hostin tor +1
Hack Smarter Security | TryHackMe Write-up 1 day, 3 hours ago | systemweakness.com
ctf ctf-writeup tryhackme tryhackme-walkthrough +1
Termux: List Of Basic Commands 1 day, 3 hours ago | systemweakness.com
android basic beginners can +12
3 easiest bugs that you can find right now [guarantied] 1 day, 3 hours ago | systemweakness.com
bug bounty bug-bounty-tips cybersecurity hacking +1
Navigating Your Network: A Guide to Port Forwarding, SSH Tunneling, and Pivoting 1 day, 3 hours ago | systemweakness.com
cybersecurity linux pivoting port forwarding +1
New Cuttlefish malware infects all devices to steal credentials 1 day, 3 hours ago | systemweakness.com
authentication clicks computer science credentials +23
Buider HTB Write-up 1 day, 3 hours ago | systemweakness.com
ctf-writeup hacking hackthebox-writeup infosec-write-ups +1

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

XDR Detection Engineer

@ SentinelOne | Italy
View on infosec-jobs.com

Security Engineer L2

@ NTT DATA | A Coruña, Spain
View on infosec-jobs.com

Cyber Security Assurance Manager

@ Babcock | Portsmouth, GB, PO6 3EN
View on infosec-jobs.com

Senior Threat Intelligence Researcher

@ CloudSEK | Bengaluru, Karnataka, India
View on infosec-jobs.com

Cybersecurity Analyst 1

@ Spry Methods | Washington, DC (Hybrid)
View on infosec-jobs.com

Security Infrastructure DevOps Engineering Manager

@ Apple | Austin, Texas, United States
View on infosec-jobs.com
View more jobs