HackTheBox - Encoding
00:00 - Introduction
00:57 - Start of nmap
02:45 - Checking out the API Documentation
04:00 - Interacting with the API Server
05:15 - Showing the file_url, parameter and showing we can access local files
06:36 - Building a webserver in Flask to make some middleware to exploit this SSRF, allowing us to easily download files from the webserver
09:50 - Our middleware works! Can download files off the server.
11:15 - Downloading the apache2 configuration to find where all the webserver files are hosted
14:30 - Using gobuster against our middleware to discover any hidden webfiles, have to edit our middleware to return 404 if it didn’t return a file
16:45 - Running gobuster against our code now that it gives 404... Its going slow, switching to a different wordlist and finding a .git repository
17:50 - Git-Dumper fails because our middleware isn’t setting content-type correctly. Have to fix that
19:50 - Opening the source code from the .git repo up in Visual Studio code
5 months ago 00:00:00 1
6 months ago 00:04:06 1
7 months ago 00:32:44 18
7 months ago 00:34:38 2
7 months ago 01:27:34 5
7 months ago 00:37:18 6
7 months ago 00:41:25 5
7 months ago 01:46:13 2
7 months ago 01:12:42 3
7 months ago 00:26:29 1
7 months ago 02:06:46 2
7 months ago 00:54:43 11
7 months ago 02:05:30 1
7 months ago 00:33:44 1
7 months ago 00:27:16 1
8 months ago 00:30:39 1
8 months ago 11:21:04 1
10 months ago 05:30:24 3
10 months ago 01:02:06 16
10 months ago 00:16:21 18
10 months ago 02:09:39 14
10 months ago 00:29:19 2
11 months ago 00:39:17 7
11 months ago 00:42:37 10
