all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

HackTheBox Writeup: Jerry

Add to bookmarks
June 23, 2023, 3:55 p.m. | Lena

System Weakness - Medium systemweakness.com

This blog post contains my writeup for HackTheBox’s Jerry. This machine was about Apache Tomcat and Arbitrary File uploads.

Table of Contents

Reconnaissance

I started off by checking the connection to the Jerry box, (10.10.10.95 in this case).

$ ping 10.10.10.95

I verified the connection with Ping. I then used Nmap to check the open ports and services using,

$ nmap -sC -sV -Pn 10.10.10.95

One service was discovered on port 8080. …

apache blog blog post box case check cybersecurity file hacking hackthebox machine nmap open ports ping ports services tomcat verified windows writeup

Visit resource

More from systemweakness.com / System Weakness - Medium

IDOR Attacks Demystified: How They Work and How to Prevent Them 16 hours ago | systemweakness.com
attacks business compromise confidentiality +13
How does Single Sign-on (SSO) interact with Active Directory (AD) and Outlook? 16 hours ago | systemweakness.com
access active directory applications authentication +15
OSI Model & TCP/IP Comparison 16 hours ago | systemweakness.com
access communication deals frameworks +14
First AD home lab 1 day, 12 hours ago | systemweakness.com
access active directory building can +17
3 Steps to protect yourself from Prompt Injection 1 day, 12 hours ago | systemweakness.com
prompt-engineering prompt injection security
Clocky | TryHackMe Write-up 2 days, 11 hours ago | systemweakness.com
ctf ctf-writeup tryhackme tryhackme-walkthrough +1
Bypassing Aquatone’s lack of ability to take screenshots of private websites 2 days, 11 hours ago | systemweakness.com
automation cybersecurity hacking pentesting +1
Tuesday Morning Threat Report: Apr 30, 2024 2 days, 11 hours ago | systemweakness.com
analysis artificial intelligence bad customers +21
Staying Anonymous — Ethical Hacking as a Beginner [09] 2 days, 11 hours ago | systemweakness.com
anonymous beginner communication cybersecurity +22

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Senior Security Engineer - Detection and Response

@ Fastly, Inc. | US (Remote)
View on infosec-jobs.com

Application Security Engineer

@ Solidigm | Zapopan, Mexico
View on infosec-jobs.com

Defensive Cyber Operations Engineer-Mid

@ ISYS Technologies | Aurora, CO, United States
View on infosec-jobs.com

Manager, Information Security GRC

@ OneTrust | Atlanta, Georgia
View on infosec-jobs.com

Senior Information Security Analyst | IAM

@ EBANX | Curitiba or São Paulo
View on infosec-jobs.com

Senior Information Security Engineer, Cloud Vulnerability Research

@ Google | New York City, USA; New York, USA
View on infosec-jobs.com
View more jobs