Socket | Malayalam Tutorial | Hack the Box
2 years ago
19
Socket is a medium linux box, which hosts a webserver for scanning QR codes on port 80. On downloading the application we'll identify its trying to connect to vhost on port 5789. On exploiting sql injection on sqlite we can leak the credentials for the user. Root access can be gained by exploiting the loopholes in pyInstaller by including root files in spec files.
00:40 nmap
01:40 website
03:05 downloading the app
04:43 Analyzing the app
07:16 ws.qreader.htb
09:25 redirecting the traffic via burp
12:45 sql injection on sqlite
18:35 admin hash
21:24 identifying user
27:00 exploiting pyinstaller
Loading comments...
-
LIVE
The Charlie Kirk Show
15 minutes agoJUDGMENT DAY 2025: The Election Results Stream
2,473 watching -
DVR
Kim Iversen
2 hours agoAn Islamist Socialist in NYC? The Panic Is Epic | Neocons To Tucker: 'Love Israel OR ELSE'
15.6K65 -
LIVE
MattMorseTV
1 hour ago🔴Election Day LIVE COVERAGE.🔴
1,365 watching -
1:05:56
vivafrei
2 hours agoComey Doubles Down, Prosecution Doubles Up! Election Day Madness! Boasberg Impeachment & MORE!
21.2K6 -
LIVE
SpartakusLIVE
1 hour agoNEW Meta = EPIC WINS on Battlefield 6 - REDSEC
115 watching -
DVR
StoneMountain64
4 hours agoBattlefield REDSEC leveling guns for attachments
29.6K1 -
26:19
Liberty Hangout
4 days agoAnti-Trumpers Make Up Bizarre Theories
9.16K27 -
LIVE
GritsGG
4 hours agoWorld Record Win Streak Attempt! #1 Most Wins 3880+!
37 watching -
LIVE
The Rabble Wrangler
15 hours agoBattlefield with The Best in the West
79 watching -
13:56
Cash Jordan
2 hours ago"OPEN BORDERS" Mob BATTERS Portland Jail… 'COMBAT' Marines DEFY Judge, BREAK BONES
4.92K7