HackTheBox - Crossfit2

Поділитися
Вставка
  • Опубліковано 4 гру 2024

КОМЕНТАРІ • 47

  • @krosec
    @krosec 3 роки тому +43

    2 hours and 44 minutes of ippsec solving an insane box...
    Popcorn time!

  • @saketsrv9068
    @saketsrv9068 3 роки тому +3

    I was just waiting for INSANE box.Thanks all again legend

    • @yamunaudayanthi3266
      @yamunaudayanthi3266 3 роки тому +3

      Me too...🤗

    • @muhammadzeeshankhan4947
      @muhammadzeeshankhan4947 3 роки тому +1

      Perhaps legend is small word for him. He is way beyond legend.

    • @saketsrv9068
      @saketsrv9068 3 роки тому

      @@muhammadzeeshankhan4947 True, No training institutes provides this gem for free,what this man does all alone.He will be always in prayers of us.

  • @x00-p3z
    @x00-p3z 3 роки тому +1

    Oh...man this is a treasure... Meny things are resembles with real life Scenarios..

  • @yamunaudayanthi3266
    @yamunaudayanthi3266 3 роки тому +5

    Insane box😃
    Thanks you ipp...😍😘

  • @booooman
    @booooman 3 роки тому +2

    This was insane. Great job as always

  • @stevenspring9889
    @stevenspring9889 3 роки тому +2

    Ohh god yes three hours, love intense boxes, and as a system administrator I love monotonous s***

  • @luckythandel
    @luckythandel 3 роки тому +4

    37:29 this thing happened to me in the new box. I kept thinking for 5 days that box is broken until I used Proxy with curl and capture it in burp.

  • @jaopredoramires
    @jaopredoramires 3 роки тому

    this sure was a ride. learned a lot, thanks!

  • @snarbywrx
    @snarbywrx 3 роки тому

    That was one hell of an insane box.

  • @samsepi0l227
    @samsepi0l227 2 роки тому

    You are talented man.

  • @TechSolutionHindi
    @TechSolutionHindi 3 роки тому

    Really tough box thank you ippsec

  • @WithoutRemorce
    @WithoutRemorce 3 роки тому +1

    Before privesc thoughts in my head - not too complicated, but getting the root is blown my mind, how much time it will take to know so many nuances? Thanks for the great video!:)

  • @potatoonastick2239
    @potatoonastick2239 3 роки тому +1

    dear god what a box

  • @dondron7975
    @dondron7975 3 роки тому

    @ippsec with that ubikey stuff... Google said that the counter is F0801. You tried first 0801 (didn't work) and then 0F08 that worked. My question is.. why did it work? It is a very short number compared with the one on the file. It wouldn't have to be F080? I hope i did explain well. Thank you for your content, it is amazing!!

  • @ne5i_
    @ne5i_ 2 роки тому

    1:19:07 I’m super confused what happened here. Surely you just changed the host header of your request, which would just hit a different vhost on the server - how did that end up changing the domain in the email? Or is it just naively assuming that the requested hostname is trustworthy?

  • @ne5i_
    @ne5i_ 2 роки тому

    1:16:51 I wonder if nslookup was also doing an AAAA request?

  • @MD4564
    @MD4564 3 роки тому +1

    Love the video watching while at work :) Can you do a tutorial on setting up BurpSuite and basic Tutorial ?

  • @kousam9435
    @kousam9435 3 роки тому

    u best

  • @tomaswainy
    @tomaswainy 3 роки тому +1

    When you eventually sent the password reset link and waited for someone to click it... Who did that? Is that something automated by htb, or is someone monitoring those accounts for this purpose? Might be a dumb question but I have no Idea and am very curious!

    • @ippsec
      @ippsec  3 роки тому +4

      Cronjob clicking it

    • @tomaswainy
      @tomaswainy 3 роки тому

      @@ippsec thank you... I've just read up about Cronjob now. I can only wish that one day I'll have the knowledge you have. Thanks for replying, and thank you for the amazing content!

  • @crusader_
    @crusader_ 3 роки тому

    You were writing notorious SQL queries

  • @anonymous-software.4355
    @anonymous-software.4355 3 роки тому

    Cuál es el tema de la terminal?.me gustó los colores que utiliza

  • @julianopl
    @julianopl 3 роки тому

    quick note: I'm pretty sure that the import pty in python would've worked if used with /usr/local/bin/bash (unix/bsd style) instead of /bin/bash (linux style)...
    Great video walkthrough by the way... I'm still digesting all the info showed here as most of what was done is completely new for me.... thanks again for this awesome job!!!

  • @exohive5608
    @exohive5608 3 роки тому

    How do you set up your machine?

  • @berthold9582
    @berthold9582 3 роки тому

    Hey Ipp tu as fait quel formation en Cybersécurité? 😆 J'ai grave envie d'être ton élève enfin tout les abonnés le veulent

  • @suvidsinghal1365
    @suvidsinghal1365 3 роки тому +2

    Is this box oscp level?

    • @pengpleb
      @pengpleb 3 роки тому +4

      Not even close. OSCP is way way easier than this

    • @flamingoindigo4253
      @flamingoindigo4253 3 роки тому +1

      there is a playlist for ocsp prep in ippsec's channel, most of the boxes are easy-med level.

    • @thev01d12
      @thev01d12 3 роки тому

      Oscp boxes levels upto easy boxes of htb. Most of the medium boxes in htb are way harder than oscp

  • @mariamakter8109
    @mariamakter8109 3 роки тому

    Do i need deep knowledge about vlan for hacking ?

  • @TheKSH991
    @TheKSH991 3 роки тому

    pepega is a twitch meme lol

  • @eklypzn
    @eklypzn 3 роки тому

    Clearly you didn't watch 24. President David Palmer.

  • @z9fr
    @z9fr 3 роки тому +3

    respond to me server haha

  • @JNET_Reloaded
    @JNET_Reloaded 3 роки тому

    whats with the annoying $ why do this it is confusing! turn that crap off!

    • @izaak791
      @izaak791 3 роки тому +7

      so you have someone taking 2hrs+ of their time to post a walkthrough of an insane box for free and you focus on a dollar sign? oh lawd help this man lol

    • @hadrian3689
      @hadrian3689 3 роки тому +3

      Lol someone’s mad

    • @ippsec
      @ippsec  3 роки тому +14

      May not look pretty, but it's infinitely more annoying debugging issues created by trailing spaces.

    • @karanramrakhyani4014
      @karanramrakhyani4014 3 роки тому +1

      Python is nigthmare of ident space error

  • @YoshimuraCDL
    @YoshimuraCDL 3 роки тому

    Hey , do u have maybe a discord or some chat that i can contact with u ?

  • @TheBrutaline
    @TheBrutaline 3 роки тому +3

    IppsecRocks

  • @marsanmarsipan
    @marsanmarsipan 3 роки тому +2

    Lets take a moment to appreciate the nice workaround to google this week.
    Awsome to see how a magician works, Ippsec.