HackTheBox - AppSanity

Поділитися
Вставка
  • Опубліковано 4 гру 2024

КОМЕНТАРІ • 27

  • @pendragon3434
    @pendragon3434 8 місяців тому +4

    I would've been so lost after gaining the initial foothold with devdoc, I dont think I'd have noticed the service listening on port 100 and even if I did I feel like I would've never figured out what the program was doing or how ro exploit it's functionality. Hopefully one day ill be able to spot these little things even half as well as you do. Great walkthrough appreciate the work

  • @AUBCodeII
    @AUBCodeII 8 місяців тому

    59:46 you can also use -C3 instead of -A3 -B3. The "C" stands for "context" so it's easy to memorize.

  • @prudhvikonakalla9605
    @prudhvikonakalla9605 9 місяців тому +5

    Waiting for your video sir....😊

    • @Omar-sr1ln
      @Omar-sr1ln 8 місяців тому +2

      sar do the needful saaaaar

  • @charlesnathansmith
    @charlesnathansmith 9 місяців тому +2

    The BUFFER_OVERFLOW results in process monitor are from the program getting buffer size info from the Win32 API
    If you want it to return some string value or something large, you make a call to wtv info API routine giving it a buffer and the buffer size, and if the size isn't large enough to hold the response, you get an overflow response code and information on the correct size that its needs to be.
    Usually the pattern used is to send the request with a 0 size, so it errors and gives you the correct size, then you can allocate enough space and make the call again with the correct size.
    This results in tons of overflow errors listed in the system messages, but it's just standard procedure

  • @for14556
    @for14556 8 місяців тому +2

    @IppSec - The inserted magicbytes are not going to break the synax of the reverse shell?

    • @ippsec
      @ippsec  8 місяців тому +6

      Nope. ASPX ignores the characters that aren't part of its syntax. Just like PHP wouldnt execute whats before

  • @AUBCodeII
    @AUBCodeII 9 місяців тому +7

    Ipp Bandicoot

  • @puzzlepuzzlepuzzle760
    @puzzlepuzzlepuzzle760 9 місяців тому +1

    May i ask what OS you normally run IppSec?

  • @J064n
    @J064n 9 місяців тому

    Whats your terminal setup and shortcuts?

  • @Heisenberg696
    @Heisenberg696 9 місяців тому +2

    why don't you use kali for just for one video please

    • @ippsec
      @ippsec  8 місяців тому +3

      Go to the older videos, but really distro does not matter

  • @dedsec4002
    @dedsec4002 9 місяців тому +3

    7:03 now we all knew how old is ippsec

    • @ippsec
      @ippsec  9 місяців тому +2

      That actually wasn't my birth year :) Couple years off.

    • @AUBCodeII
      @AUBCodeII 9 місяців тому +1

      Ipp is actually a 10 year old cyborg from Earth-10005, Universe-323.

  • @Beetlemiao
    @Beetlemiao 9 місяців тому

    One thing I don’t understand is how you can tell that the report management is ran by a high privileged account, how do you check that before going that route?

    • @G0rlami
      @G0rlami 9 місяців тому +1

      "tasklist /v" shows all the running processes + the users that they run under. When you run it you can usually see under which user every process runs .
      Side note*: Some entries are showing as "N/A" for the User, but that usually means that it's running under a system account.

  • @tg7943
    @tg7943 9 місяців тому

    Push!

  • @phamcongtoan1399
    @phamcongtoan1399 8 місяців тому

    I'm new,What is this channel about?😅

  • @maniakdemi3548
    @maniakdemi3548 9 місяців тому

    Yess

  • @azizhankaya8694
    @azizhankaya8694 9 місяців тому +3

    You can't hack time..

    • @GajendraMahat
      @GajendraMahat 9 місяців тому

      some gigs are hacking time by buying SSDs😂😂