all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Pilgrimage HTB write up

Add to bookmarks
Dec. 5, 2023, 1:12 p.m. | Pr3ach3r

System Weakness - Medium systemweakness.com

Don’t leave your Git repository exposed

Pilgrimage easy machine

Introduction

Hello, everyone! Welcome back to my infosec journey. Today, I’ll be discussing Pilgrimage, an “easy” machine on the hackthebox.com website. To pwn this box, one can dump an exposed git repository and find the version of an ImageMagick program. By exploring CVE-2022–44268, also known as ImageMagick Arbitrary File Read, we can uncover the user credentials. Upon SSH access, a Binwalk task is running on the system. Verifying the …

hacking hackthebox htb-writeup infosec-write-ups pentesting

Visit resource

More from systemweakness.com / System Weakness - Medium

A Simple Git Misstep That Could Open Doors for Hackers 17 hours ago | systemweakness.com
article can commit context +19
Exploring JWT Exploitation Methods 17 hours ago | systemweakness.com
account account takeover arm continue +16
Unlocking the Network’s Secrets: A Thrilling Journey into Network Penetration Testing 17 hours ago | systemweakness.com
cybersecurity don dream fear +15
NIDPS ⚔️ 17 hours ago | systemweakness.com
abnormal administrator alert a network +21
How to Streamline Zombie Account Management? 1 day, 21 hours ago | systemweakness.com
access control access management account build +17
Understanding Cybersecurity Threats: Safeguarding Against Digital Perils 1 day, 22 hours ago | systemweakness.com
article consequences critical cyber +21
Hosting Websites In DARKWEB 2 days, 20 hours ago | systemweakness.com
darkweb hacking hostin tor +1
Hack Smarter Security | TryHackMe Write-up 2 days, 20 hours ago | systemweakness.com
ctf ctf-writeup tryhackme tryhackme-walkthrough +1
Termux: List Of Basic Commands 2 days, 20 hours ago | systemweakness.com
android basic beginners can +12

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Expert Global Security Solutions Specialist

@ CHS Inc. | Inver Grove Heights, MN, US, 55077-1721
View on infosec-jobs.com

Security Operations Senior Associate - Perimeter Response

@ JPMorgan Chase & Co. | Houston, TX, United States
View on infosec-jobs.com

Cybersecurity Engineer IV

@ ManTech | 203O - CustomerSite,Washington,DC
View on infosec-jobs.com

Senior Site Reliability Engineer - Security

@ Klaviyo | Boston, MA
View on infosec-jobs.com

Information Security Specialist (Cloud Security)

@ Vertiv | Philippines
View on infosec-jobs.com

Business Value Consultant

@ Sumo Logic | United States
View on infosec-jobs.com
View more jobs