all InfoSec news
HackTheBox - Office
June 22, 2024, 2:58 p.m. | IppSec
IppSec www.youtube.com
01:00 - Start of nmap
02:00 - Testing the XAMPP PHP Vulnerability, which doesn't work
06:20 - Getting the Joomla Version from the manifest, then exploiting CVE-2023-23752 to get the MySQL Password (same as devvortex)
11:30 - Using KerBrute to bruteforce valid usernames and then NetExec to spray the MySQL Password to get DWOLFE's password
16:40 - Examining the PCAP on the FileShare then building a Kerberos Hash for ETYPE 18
22:30 - Logging into Joomla then …
bruteforce cve cve-2023-23752 exploiting hackthebox introduction joomla kerbrute manifest mysql nmap office password php spray start testing usernames using valid version vulnerability work xampp
More from www.youtube.com / IppSec
HackTheBox - Office
6 days, 17 hours ago |
www.youtube.com
Using PAM EXEC to Log Passwords on Linux
3 weeks, 5 days ago |
www.youtube.com
HackTheBox - Napper
1 month, 3 weeks ago |
www.youtube.com
Jobs in InfoSec / Cybersecurity
Ingénieur Développement Logiciel IoT H/F
@ Socomec Group | Benfeld, Grand Est, France
Architecte Cloud – Lyon
@ Sopra Steria | Limonest, France
Senior Risk Operations Analyst
@ Visa | Austin, TX, United States
Military Orders Writer
@ Advanced Technology Leaders, Inc. | Ft Eisenhower, GA, US
Senior Golang Software Developer (f/m/d)
@ E.ON | Essen, DE
Senior Revenue Operations Analyst (Redwood City)
@ Anomali | Redwood City, CA