all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Keeper Write-up

Add to bookmarks
April 24, 2024, 5:17 p.m. | Pr3ach3r

System Weakness - Medium systemweakness.com

When your Danish dessert compromise the entire system

Keeper HTB banner

INTRODUCTION

Keeper is an easy machine on the HackTheBox website. To gain initial access, we need to exploit a vulnerability on the Request Tracker web service. Once we find an SSH user credential, we can access the server and important files that contain the root password. This last step may seem challenging initially, but it will be easier if you are from Europe.

ENUMERATION

First, check the server’s open …

access can compromise credential ctf-writeup easy exploit files find hacking hackthebox hackthebox-writeup htb important infosec initial access keeper machine may password pentesting request root server service ssh tracker vulnerability web website write-up

Visit resource

More from systemweakness.com / System Weakness - Medium

IDOR Attacks Demystified: How They Work and How to Prevent Them 2 days, 18 hours ago | systemweakness.com
attacks business compromise confidentiality +13
How does Single Sign-on (SSO) interact with Active Directory (AD) and Outlook? 2 days, 18 hours ago | systemweakness.com
access active directory applications authentication +15
OSI Model & TCP/IP Comparison 2 days, 18 hours ago | systemweakness.com
access communication deals frameworks +14
First AD home lab 3 days, 15 hours ago | systemweakness.com
access active directory building can +17
3 Steps to protect yourself from Prompt Injection 3 days, 15 hours ago | systemweakness.com
prompt-engineering prompt injection security
Clocky | TryHackMe Write-up 4 days, 13 hours ago | systemweakness.com
ctf ctf-writeup tryhackme tryhackme-walkthrough +1
Bypassing Aquatone’s lack of ability to take screenshots of private websites 4 days, 13 hours ago | systemweakness.com
automation cybersecurity hacking pentesting +1
Tuesday Morning Threat Report: Apr 30, 2024 4 days, 13 hours ago | systemweakness.com
analysis artificial intelligence bad customers +21
Staying Anonymous — Ethical Hacking as a Beginner [09] 4 days, 13 hours ago | systemweakness.com
anonymous beginner communication cybersecurity +22

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Cyber Security Engineer

@ ASSYSTEM | Bridgwater, United Kingdom
View on infosec-jobs.com

Security Analyst

@ Northwestern Memorial Healthcare | Chicago, IL, United States
View on infosec-jobs.com

GRC Analyst

@ Richemont | Shelton, CT, US
View on infosec-jobs.com

Security Specialist

@ Peraton | Government Site, MD, United States
View on infosec-jobs.com

Information Assurance Security Specialist (IASS)

@ OBXtek Inc. | United States
View on infosec-jobs.com

Cyber Security Technology Analyst

@ Airbus | Bengaluru (Airbus)
View on infosec-jobs.com
View more jobs