Socket | Malayalam Tutorial | Hack the Box
2 years ago
21
Socket is a medium linux box, which hosts a webserver for scanning QR codes on port 80. On downloading the application we'll identify its trying to connect to vhost on port 5789. On exploiting sql injection on sqlite we can leak the credentials for the user. Root access can be gained by exploiting the loopholes in pyInstaller by including root files in spec files.
00:40 nmap
01:40 website
03:05 downloading the app
04:43 Analyzing the app
07:16 ws.qreader.htb
09:25 redirecting the traffic via burp
12:45 sql injection on sqlite
18:35 admin hash
21:24 identifying user
27:00 exploiting pyinstaller
Loading comments...
-
LIVE
MattMorseTV
3 hours ago $45.15 earned🔴Mexican RIOTS.🔴
4,062 watching -
58:35
WanderingWithWine
4 days ago $0.08 earnedLive in FLORENCE ITALY for €80k? | 6 Houses For Sale in Italy
751 -
LIVE
Mally_Mouse
1 day ago🔥🍺Spicy HYDRATE Saturday!🍺🔥-- Let's Play: Cuff Bust
1,905 watching -
3:45
Gun Drummer
11 hours agoThree Days Grace - I Hate Everything About You (GUN COVER)
641 -
17:53
Exploring With Nug
10 hours ago $2.32 earnedROV Grabber Arm Training: Improving Accuracy in Murky Lake Conditions
21.6K1 -
24:24
MYLUNCHBREAK CHANNEL PAGE
23 hours agoNo Blueprints: The Lead Up
32.1K13 -
1:22:05
BooniesHQ
2 hours agoGame Of SKATE Manuel Herrera Vs. Lamont Holt: Boonies Skate Night 4
5.39K -
LIVE
SOLTEKGG
9 hours agoARC RADIDERS "First Month-Anniversary on Rumble"
260 watching -
LIVE
blackfox87
5 hours ago🟢 BO7 GRIND TIME! | Premium Creator | #DisabledVeteran
85 watching -
11:30
Sideserf Cake Studio
10 hours ago $11.83 earnedHow To Make An EASY Hyperrealistic Turkey Dinner Cake!
94.5K15