HackTheBox - Mischief

GKo6xoB1g4Q/default.jpg

01:20 - Begin of NMAP
02:30 - Extra nmaps, SNMP and AllPorts
04:00 - Playing with OneSixtyOne (SNMP BruteForce)
07:00 - Looking at SNMPWalk Output
08:40 - Installing SNMP Mibs so SMPWalk is readable
10:05 - Accessing the box over Link Local IPv6 Address
14:00 - Looking at Por 3366 (Website), getting PW from SNMP Info
17:50 - Getting IPv6 Routable Address via SNMP
19:20 - NMAP the IPv6 Address
21:00 - Accessing the page over IPv6
23:00 - Getting output from the command execution page
24:55 - Viewing Credentials Files and accessing the box via SSH
29:00 - Examining why loki cannot use /bin/su (getfacl)
31:00 - Getting a shell as www-data
38;10 - Finding the root.txt file from using find command to search for files by
date
40:30 - Extra content, reading files via ICMP

GKo6xoB1g4Q/default.jpg
HackTheBox - Mischief HackTheBox - Mischief Reviewed by Anonymous on January 05, 2019 Rating: 5