HackTheBox - Netmon
01:00 - Begin of Recon
03:50 - Searching for good files to view via FTP
09:00 - Nothing really found, searching for where PRTG creation file is
14:34 - Backup configuration found!
16:20 - Logging in by incrementing the password from 2018 to 2019
17:55 - Searching for CVE's
19:45 - Searching for where to send notification emails like CVE Said
20:30 - Testing for Command Injection via Cmd
22:20 - Testing for Command Injection via Powershell
23:00 - Getting a reverse shell
26:55 - Encoding powershell in Base64 to eliminate potential bad characters
29:10 - Getting a reverse shell
HackTheBox - Netmon
Reviewed by Anonymous
on
June 29, 2019
Rating: