all InfoSec news
Pilgrimage HTB write up
Dec. 5, 2023, 1:12 p.m. | Pr3ach3r
System Weakness - Medium systemweakness.com
Don’t leave your Git repository exposed
Introduction
Hello, everyone! Welcome back to my infosec journey. Today, I’ll be discussing Pilgrimage, an “easy” machine on the hackthebox.com website. To pwn this box, one can dump an exposed git repository and find the version of an ImageMagick program. By exploring CVE-2022–44268, also known as ImageMagick Arbitrary File Read, we can uncover the user credentials. Upon SSH access, a Binwalk task is running on the system. Verifying the …
More from systemweakness.com / System Weakness - Medium
How to Streamline Zombie Account Management?
1 day, 21 hours ago |
systemweakness.com
Hack Smarter Security | TryHackMe Write-up
2 days, 20 hours ago |
systemweakness.com
Termux: List Of Basic Commands
2 days, 20 hours ago |
systemweakness.com
Jobs in InfoSec / Cybersecurity
Expert Global Security Solutions Specialist
@ CHS Inc. | Inver Grove Heights, MN, US, 55077-1721
Security Operations Senior Associate - Perimeter Response
@ JPMorgan Chase & Co. | Houston, TX, United States
Cybersecurity Engineer IV
@ ManTech | 203O - CustomerSite,Washington,DC
Senior Site Reliability Engineer - Security
@ Klaviyo | Boston, MA
Information Security Specialist (Cloud Security)
@ Vertiv | Philippines
Business Value Consultant
@ Sumo Logic | United States