Gitlab LFI to RCE - HackTheBox "Laboratory"

  Рет қаралды 113,432

John Hammond

John Hammond

2 жыл бұрын

For more content, subscribe on Twitch! / johnhammond010
If you would like to support me, please like, comment & subscribe, and check me out on Patreon: / johnhammond010
PayPal: paypal.me/johnhammond010
E-mail: johnhammond010@gmail.com
Discord: johnhammond.org/discord
Twitter: / _johnhammond
GitHub: github.com/JohnHammond

Пікірлер: 132
@georgehammond867
@georgehammond867 2 жыл бұрын
yourt terminsl is a mess.
@_JohnHammond
@_JohnHammond 2 жыл бұрын
yourts speling is a messer.
@georgehammond867
@georgehammond867 2 жыл бұрын
​@@_JohnHammond do you know any good learning material on defensive security? all we have here is offensive security, not alot on Blue Team, how to get hacker out of your pc and lock them next time?
@rogervanbommel1086
@rogervanbommel1086 2 жыл бұрын
@@georgehammond867 as a start I definitely recommend checking out liveoverflow’s channel, mostly the protect Linux server from hackers, also off and defensive security are closely related, if you know what is needed to exploit something you can lock that down
@DavidAlvesWeb
@DavidAlvesWeb 2 жыл бұрын
The video hasn't even started, but there's already 11 likes! This just shows how much the community appreciates your effort to put out amazing content John! ❤️ Thank you so much for the inspiration 🏆😊
@MaxDev
@MaxDev 2 жыл бұрын
every KZfaqr has at least 1 dislike this guy is a god he has none
@DavidAlvesWeb
@DavidAlvesWeb 2 жыл бұрын
@@MaxDev that’s so true!
@dieSpinnt
@dieSpinnt 2 жыл бұрын
But is he singing?
@HackTheBox
@HackTheBox 2 жыл бұрын
Shower love, much appreciated, John! 💚 P.S. Thanks for spreading the word about #CyberApocalypseCTF21! Epicness loading 👽 NO. OF PLAYERS: 5,386 NO. OF TEAMS: 2,561
@flawnski
@flawnski 2 жыл бұрын
Will you ever introduce a partnership with GitHub? That would be so awesome!!!
@ldohlj1
@ldohlj1 2 жыл бұрын
I always learn the things that I don't understand from HTB walkthrough pdfs in your videos. It's always an awesome experience to watch your videos.
@kylelarson7840
@kylelarson7840 2 жыл бұрын
54:45 Nice of you to complete the incantation with the words "We're in!" as is tradition.
@JuanBotes
@JuanBotes 2 жыл бұрын
as a beginner and i lack skills and researching skills , i really enjoy your videos, because it shows how you find clues , do your research follow the breadcrumbs and find a exploit path and trying various things until you understand the target and what will work.
@ekowsec
@ekowsec 2 жыл бұрын
I feel the energy when you got Dexter's id_rsa keys😂
@arivanhouten6343
@arivanhouten6343 2 жыл бұрын
We're in baby
@asnigirev
@asnigirev 11 ай бұрын
The amount of stuff I learned from one just one video is.. amazing. Thanks John ✌️
@wchen2340
@wchen2340 2 жыл бұрын
I just saw ippsecs vid right before this. really helpful 2c different approaches/ways. thanks john.
@chickeningay
@chickeningay 2 жыл бұрын
Hey man I've recently discovered your channel i really wanted to learn stuff like this but j didnt know you could learn this outside of college or knowing russian currently bing watching all your videos keep it up
@aloshkartosh840
@aloshkartosh840 Жыл бұрын
Hey man what courses are in russian i know russian but i have never seen anything before
@chickeningay
@chickeningay Жыл бұрын
@@aloshkartosh840 well considering Russia has one of the biggest hacking communities, I'm sure you just have to find the right people
@stevenpooley393
@stevenpooley393 2 жыл бұрын
having to watch this in slowmo to keep up, its giving me some awesome ideas on areas i need to learn
@maxim3536
@maxim3536 2 жыл бұрын
Fun fact: 29:52 the logo is from xakep.ru a Russian Hacker magazine, didn't know they made videos as well
@0SPwn
@0SPwn 2 жыл бұрын
I completed this box a while ago, but its good to see you're looking at HTB now!
@SirMoefe
@SirMoefe 2 жыл бұрын
I'm amazed by your skills! Good Job, keep up the good work!
@PlzReturnYourShoppingCart
@PlzReturnYourShoppingCart 2 жыл бұрын
If there is one YT page I don't want to troll on its this one. This dude is scary smart.
@PlzReturnYourShoppingCart
@PlzReturnYourShoppingCart 2 жыл бұрын
@@bogdan4706 ehhh.. I am a loooong way off from it. I have been taking network pen courses actively over the last year but all its really teaching me is to be a script kiddie. This dude has a much deeper understanding of the mechanisms and actions of actual malware which makes me think he can throw together some wild stuff. Maybe in a few years I will think differently but he is pretty impressive to me!
@guiorgy
@guiorgy 2 жыл бұрын
@@PlzReturnYourShoppingCart Practice is the best teacher. If you forced yourself to play with those kind o HackMe boxes for a couple of months non stop (of course staring at easy level first), you'd be able to do half if not more. You'd be surprised at how adaptable humans are
@PlzReturnYourShoppingCart
@PlzReturnYourShoppingCart 2 жыл бұрын
@@guiorgy Ya know, I really don't have family or friend support for learning these things. It's very much so of my own volition and I know that I basically know nothing. but the comment that @bogdan and you left really has a big impact on me. You guys being the only people that have made this knowledge feel within reach has such a positive and vividly assuring feeling for me. I am super thankful for the direction and positivity. Thank you so much! I mean it from the bottom of my heart. Thank you so much! These words you shared have a lot of weight to me. What great people watch this channel! What a great community! I am very thankful!
@guiorgy
@guiorgy 2 жыл бұрын
@@PlzReturnYourShoppingCart To be honest, if a person is really passionate about something, they don't really need any support, but it's always better with it. As for whether this can be your passion, honestly I don't think there's anybody that can say for sure untill they at least try. In fact, sometimes it may take a lot of time trying to realise whether you are into it or not. Here's a quote: “The hardest part is starting. Once you get that out of the way, you’ll find the rest of the journey much easier.” - Simon Sinek Personally, I think that, if you believe something could become a real hobby/passion for you, you will regret more if you never try, than if you try but fail and realize it's not your thing. In any case, hope you can find something that you really enjoy doing one day ;)
@PlzReturnYourShoppingCart
@PlzReturnYourShoppingCart 2 жыл бұрын
@@guiorgy For sure man. I have no plans on giving up. I love having the knowledge. Thanks for the good vibes!
@jonny-mp3
@jonny-mp3 2 жыл бұрын
love these walkthroughs
@vibiemood1079
@vibiemood1079 2 жыл бұрын
A day before i was searching for this🥴 I'm grateful for this♥️😊
@REktSigMa
@REktSigMa 12 күн бұрын
Yo bro I love how you talk yourself through this entire process without anyone beside you. Although some may think this type of illustration from a person always asking themselves questions and answering themselves in the same instance. is crazy. Lmaooo. Just saying bro Love the vids., Lmaoooo
@BehruzbekOtayev
@BehruzbekOtayev 2 жыл бұрын
Great content 😄 I imagine how much time you've spent on actually cracking it
@h0tPlug1n
@h0tPlug1n 2 жыл бұрын
You are a real legend man. Hat's off to your skills and dedication.
@prodbylucii
@prodbylucii Жыл бұрын
Aggressively typing in the terminal: "We're in😎" Love your content btw❤️
@blablablah1able
@blablablah1able 2 жыл бұрын
Interesting approach to trigger the password reset and get the token using LFI to read the production logs. Since you have shell access you also have access to gitlab-rails, so I've just changed the password directly in DB.
@PreetisKitchenltr
@PreetisKitchenltr 2 жыл бұрын
That's What We Wanted🔥
@vibiemood1079
@vibiemood1079 2 жыл бұрын
Yeah!!!😊
@grandmakisses9973
@grandmakisses9973 2 жыл бұрын
No it’s what we needed
@vibiemood1079
@vibiemood1079 2 жыл бұрын
@@grandmakisses9973 💯
@netanel135
@netanel135 2 жыл бұрын
Thank you very much John for the incredible work. Keep it up. Hope to see you again ASAP!
@xB-yg2iw
@xB-yg2iw 2 жыл бұрын
Love HTB! Would love to see more of these!
@zarcher100
@zarcher100 2 жыл бұрын
I feel your pain. I miss type stuff that causes headaches all the time.
@sinistermatrix5164
@sinistermatrix5164 2 жыл бұрын
Heya John 👋. Much love for the awesome video! Keep it up and maybe we can get some more retired boxes down the line!
@jpabagdonas
@jpabagdonas 2 жыл бұрын
Thx for the great video John! Please make a video suggesting what subject software developers that are not in the penetration area could study to improve their coding skills avoiding hackers.
@jatulasher3637
@jatulasher3637 2 жыл бұрын
Always doing great, John! 👌 Thank you 🔥
@erkieberg8281
@erkieberg8281 2 жыл бұрын
Like the videos and your commitment . Please keep it up mate
@itstoxicqt
@itstoxicqt 2 жыл бұрын
This room when I did it definitely was more medium than easy definitely banged my head off the wall a few times
@bugr33d0_hunter8
@bugr33d0_hunter8 2 жыл бұрын
I loved this box 📦. Tore right through it.duper fun, especially the part where, wh!aaaaaaaaaat you hitting me for, oh sorry. I almost spoiled it. Lol
@Asentinn
@Asentinn 2 жыл бұрын
Well, how does the teams work in the CTFs? I'm a newbie in this and never participated any challenge. I wonder if it is worth looking for a team with random people or just do it on my own. Btw, really great content John, I love to watch your struggles during free time. Also I've picked up few things from you, like the Terminator - my god, that was soo liberating experience :).
@Omar-sr1ln
@Omar-sr1ln 2 жыл бұрын
thanks john for ur videos wish u the best buddy
@mxschmitt_
@mxschmitt_ 2 жыл бұрын
Great video!
@adam-nw5cn
@adam-nw5cn 2 жыл бұрын
I appreciate you and this channel
@MehmetcanYildiz
@MehmetcanYildiz 2 жыл бұрын
John john john! Awesome video as always. Keep it rocks bro!
@francescofilippo437
@francescofilippo437 2 жыл бұрын
to access the von of Hack The Box, do you have to be from Virtual Machine or does it also work on WSL2? Thank you
@GeekInFrance
@GeekInFrance 2 жыл бұрын
Really love your video John !
@hacktidu135
@hacktidu135 2 жыл бұрын
Great, learned a lot
@blackstorm98
@blackstorm98 2 жыл бұрын
new profile picture , NICE !
@SIGWotts
@SIGWotts 2 жыл бұрын
Amazing as always
@BeSTF2
@BeSTF2 3 ай бұрын
what does -sC do on nmap? I can't find that function anywhere on the manuals
@younesmohssen8158
@younesmohssen8158 2 жыл бұрын
To anyone who has attempted the oscp, is this box harder or almost the same as the oscp exam machines?
@limonene8435
@limonene8435 2 жыл бұрын
The way to get root was really cool.
@gameglitcher
@gameglitcher 2 жыл бұрын
They probably sent you the swag bag to showcase the contents of the prize XD
@TheSaintOMS
@TheSaintOMS Жыл бұрын
I think this is your first video I've yelled at the screen, lol.
@q-bert558
@q-bert558 2 жыл бұрын
Respect!
@joshuajanssen5341
@joshuajanssen5341 2 жыл бұрын
Amazing, please make more HTB Videos!!!
@Josh-if5qh
@Josh-if5qh 2 жыл бұрын
So forgive me for thr noob question but... well... I'm a complete noob.. do u just use sublime to make it more readable? I'm studying web development at the same time so I use visual studio code but just wondering if u do anything else with sublime besides just help u read it?
@rioruner8377
@rioruner8377 2 жыл бұрын
John The Destroyer !
@cesarepele4947
@cesarepele4947 2 жыл бұрын
Awsome stuff
@igotinfected
@igotinfected 2 жыл бұрын
Awesome video!
@zacktzeng8569
@zacktzeng8569 2 жыл бұрын
Hi why is it necessary to add an entry to the hosts file? How come IP address doesn't work?
@gauravraj4983
@gauravraj4983 2 жыл бұрын
just awesome :)
@JimTheScientist
@JimTheScientist 2 жыл бұрын
gamer
@JimTheScientist
@JimTheScientist 2 жыл бұрын
I mean hacker but also gamer
@jenpinto272
@jenpinto272 2 жыл бұрын
nice! though i have to change the playspeed to 0.75 :D
@jorgevilla6523
@jorgevilla6523 2 жыл бұрын
Great Video!!
@numonamir9145
@numonamir9145 2 жыл бұрын
Hi John. I have a few questions about write-ups. Which is better hack with write-ups or without? How to reach level oscp? I'm working on government as CyberSecurity. I already have found a lot of bugs on websites government and after reports they have fixed is it helps me? Thank you
@verdibahnsen
@verdibahnsen Жыл бұрын
Why am I reminded of Seth Rogen when John laughs
@potplantjoe6037
@potplantjoe6037 2 жыл бұрын
what os? is he / are you running?
@prashantsingh8802
@prashantsingh8802 2 жыл бұрын
Hackthe box is good learner for who want learn hacking
@Lars-ce4rd
@Lars-ce4rd 2 жыл бұрын
While watching John using the arbitrary file read exploit atm, I'm thinking: I'm a simple man, I see an exploit without a version number and the words "shell" and "code execution", I try it. I'm pretty sure I'm watching John heading down a rabbit hole right now
@Lars-ce4rd
@Lars-ce4rd 2 жыл бұрын
After watching some more, I guess I would probably be the one heading down a rabbit hole! Great vid as always. thanks for the content :)
@FaTmWit
@FaTmWit 2 жыл бұрын
Without any connection to your content, I want to have a beer with you
@mytechnotalent
@mytechnotalent 2 жыл бұрын
Ahh yea!
@akashhansda4306
@akashhansda4306 2 жыл бұрын
07:47 I don't use nano. I love vim. 😂😂😂😂
@Blue-od7gy
@Blue-od7gy 2 жыл бұрын
good video
@noobyte84
@noobyte84 2 жыл бұрын
Hi, this is Ubuntu virtualized in Ubuntu phisic wich virtualbox?
@heisenberg8682
@heisenberg8682 2 жыл бұрын
please more John
@sandra8139
@sandra8139 Жыл бұрын
I find I have found a few questions in my Cyber security learning app that doesn't mean what the words in the questions is asking like they a trick question to see the trick of them ones I will work out
@deegayuchamodtharusha7722
@deegayuchamodtharusha7722 2 жыл бұрын
How did he did that privilege escalation from dexter to root?can someone please explain it to me?
@mustafamotiwala2335
@mustafamotiwala2335 2 жыл бұрын
When you run a command that isn't a bash builtin or the path to a specific file, the shell looks through the various directories in the PATH environment variable for an executable that matches your command. The shell looks through these directories from left to right though and it'll simply use the first one it finds. So, guessing that the docker-security file is executing the 'chmod' commands seen when catting out the binary, John made an executable shell script called "chmod" and put the path that its located in at the front of the PATH environment variable. So, when he runs the docker-security binary, it will run this chmod instead of the normal chmod. Why does this help? Well, since the docker-security binary runs as root (it is setuid), it calls chmod as root which executed /bin/bash as root. This was only possible because the docker-security binary called chmod instead of /usr/bin/chmod, thus allowing us to control what is executed.
@deegayuchamodtharusha7722
@deegayuchamodtharusha7722 2 жыл бұрын
@@mustafamotiwala2335 thank you very much !well explained.
@chetanpatil2473
@chetanpatil2473 2 ай бұрын
anyone know why he use the Ubuntu why he not use kali Linux is there specific reason ??
@popooj
@popooj 2 жыл бұрын
man !! been missing your videos lately...
@stevenspring9889
@stevenspring9889 2 жыл бұрын
Dude, I check daily... And I'm already ringing that bell icon... I feel this so much
@sandra8139
@sandra8139 Жыл бұрын
This game you have for learning Cyber security I'm not sure if I was given the right real of that I can't get it loading properly to work that out
@kalifornia909
@kalifornia909 2 жыл бұрын
Rip on the ctf. Teams only
@tilekasankulov5034
@tilekasankulov5034 2 жыл бұрын
Wow
@AFchump78
@AFchump78 2 жыл бұрын
Pipe that to grep my man
@9391862
@9391862 2 жыл бұрын
This does not look like a Beginners level :D
@bhagyalakshmi1053
@bhagyalakshmi1053 10 ай бұрын
Go long
@dersg1freak
@dersg1freak 2 жыл бұрын
Mhmm I think I understand the issue with scripts having the setuid bits, ehm I gotta go, got some paths fix. :o
@Z3R0xPl01T
@Z3R0xPl01T 2 жыл бұрын
How do you prevent your channel from getting reported
@nothingnothing1799
@nothingnothing1799 2 жыл бұрын
Im guessing a ctf doesn't count as instructional hacking since they are hosted by legitimate companies
@sumedh1678
@sumedh1678 2 жыл бұрын
It would be lot easier if you put the vulnerability that you will be exploiting in the description. Thanks.
@JTwisted
@JTwisted 2 жыл бұрын
Hey! Anybody taking part in CyberApocalypseCTF21? I'm newbie, around 70 rooms on THM, looking for team))
@0xsudip892
@0xsudip892 2 жыл бұрын
Hello I'm interested
@nickswink7983
@nickswink7983 2 жыл бұрын
Interested
@JTwisted
@JTwisted 2 жыл бұрын
@@nickswink7983 Awesome! Add me in discord: Twist#2576
@florian2119
@florian2119 2 жыл бұрын
Hi
@bhagyalakshmi1053
@bhagyalakshmi1053 Жыл бұрын
System windows for using one system also see how many systems also here how to connect, work files system
@djzio
@djzio 2 жыл бұрын
Wow. Who woulda thought that extraterrestrials would not only speak English, but know Python too?
@cedricvillani8502
@cedricvillani8502 2 жыл бұрын
before I watch this, these methods are rather slow now aren't they? lol maybe I should watch
@bhagyalakshmi1053
@bhagyalakshmi1053 10 ай бұрын
Ofs?pot codo details
@shady4tv
@shady4tv 2 жыл бұрын
Hey John - what's updog?
@bhagyalakshmi1053
@bhagyalakshmi1053 10 ай бұрын
Qfs codo skills?
@bhagyalakshmi1053
@bhagyalakshmi1053 Жыл бұрын
4weindrs looking one development ,1elmins,
@MohammedElamineHalia
@MohammedElamineHalia 2 жыл бұрын
hacking is the next gaming
@VIVEVIEV
@VIVEVIEV 2 жыл бұрын
Y’all still using python I’m on spython 😎
@bhagyalakshmi1053
@bhagyalakshmi1053 8 ай бұрын
Cerd card filles yes/no comments skills
@sandra8139
@sandra8139 Жыл бұрын
I know that hack the box is very popular but it is crazy to think that working with it is sending me real game and using my learning to open everything Up to them in the wrong with me I hate to think that job that can save perfection to know the ethical from the identity thefts scammers using my identity for every 7 ethical is a criminal hacker I can see in my identity I have a new way to watch my own apps for my progress of myself with unstoppable knowledge and skills and talents
@watchlistsclips3196
@watchlistsclips3196 2 жыл бұрын
Please make videos on cryptohack
@hpimpact2872
@hpimpact2872 2 жыл бұрын
the 5 dislikes are black hats
@REktSigMa
@REktSigMa 12 күн бұрын
The question to all people is, is this type of behavior from a normal person that does not have a KZfaq channel accepted as not being crazy? Lmaooo
@sm6tky696
@sm6tky696 2 жыл бұрын
script kiddie in certain extent... honestly
@monicah3788
@monicah3788 Жыл бұрын
You talk a lot and say little.
Plundering AWS S3 Buckets - HackTheBox
1:04:04
John Hammond
Рет қаралды 72 М.
TryHackMe! Bypassing Upload Filters & DirtySock
53:38
John Hammond
Рет қаралды 67 М.
اختراق شيبس مجنون #كوميدي #مضحك
00:11
سكتشات وحركات
Рет қаралды 13 МЛН
Fail haircut 💇‍♀️🪀🏓 #hair #cut #haircut
00:26
Swasti Ji
Рет қаралды 13 МЛН
Я бы Не Прыгнул Туда и За 100 Миллионов 😭
00:20
Глеб Рандалайнен
Рет қаралды 17 МЛН
Github Copilot Made My Code More Vulnerable
22:19
John Hammond
Рет қаралды 4,6 М.
Mozi Malware - Finding Breadcrumbs...
50:16
John Hammond
Рет қаралды 196 М.
How the Best Hackers Learn Their Craft
42:46
RSA Conference
Рет қаралды 2,5 МЛН
Ex-NSA hacker tells us how to get into hacking! (2022 Edition)
50:07
I forgot to make a video about this $150,000 server
18:54
Linus Tech Tips
Рет қаралды 820 М.
Bruteforcing MFA & Fail2ban Manipulation - TryHackMe! (Biteme)
44:38
Finding WEIRD Typosquatting Websites
24:26
John Hammond
Рет қаралды 93 М.
Snip3 Crypter/RAT Loader - DcRat MALWARE ANALYSIS
1:42:04
John Hammond
Рет қаралды 486 М.
CTF Walkthrough with John Hammond
28:07
David Bombal
Рет қаралды 169 М.