Explore >> Select a destination
|
You are here 
|
leonjza.github.io | ||
| | | | |
blog.ikuamike.io
|
|
| | | | | Difficulty Release Date Author Intermediate 20 Aug 2019 Zayotic Summary For this box, some directory bruteforce is needed to discover some php files. One of the php files has an lfi vulnerability but can only be access by authenticating to the other page. The login form can be bypassed and we exploit the lfi. For that we poison ssh logs for exploitation to rce. For privilege escalation we exploit a python web app running locally as root using insecure deserialization of the cookie by jsonpickle. | |
| | | | |
www.davidxia.com
|
|
| | | | | My Solution to Exploit Exercises Protostar Final2 Level November 1, 2020 | By David Xia This is an explanation of Protostar level Final2. I wrote a solution ? | |
| | | | |
foxglovesecurity.com
|
|
| | | | | By @breenmachine What? The most underrated, underhyped vulnerability of 2015 has recently come to my attention, and I'm about to bring it to yours. No one gave it a fancy name, there were no press releases, nobody called Mandiant to come put out the fires. In fact, even though proof of concept code was released... | |
| | | | |
mouha.be
|
|
| | | |||
