all InfoSec news
HackTheBox - Vessel [FIXED]
March 25, 2023, 8:35 p.m. | IppSec
IppSec www.youtube.com
00:00 - Introduction talking about how this box is about finding CVE's and building an exploit based upon exploit
00:50 - Start of nmap
03:00 - Running gobuster and showing the importance of using multiple wordlists.
05:00 - Attempting to register an account, which shows the endpoint /api/register but /api/ returns a 404
06:10 - Showing that raft-small-words wordlist won't discover .git but commons.txt will because commons has .git/HEAD
08:25 - …
account api box code commons cve discover endpoint exploit extract git git-dumper gobuster hackthebox head introduction nmap piece register start talking txt vulnerable wordlist wordlists
More from www.youtube.com / IppSec
HackTheBox - Analytics
3 weeks, 6 days ago |
www.youtube.com
HackTheBox - AppSanity
1 month, 1 week ago |
www.youtube.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Information Security Engineers
@ D. E. Shaw Research | New York City
Cyber Security Architect - SR
@ ERCOT | Taylor, TX
SOC Analyst
@ Wix | Tel Aviv, Israel
Associate Director, SIEM & Detection Engineering(remote)
@ Humana | Remote US
Senior DevSecOps Architect
@ Computacenter | Birmingham, GB, B37 7YS