GI Joe

less than 1 minute read

See GI Joe? CGI?

jh2i.com:50008/cgi-bin/

Doing some enumeration lead me to:

jh2i.com:50008/?-s

Which allows grabbing of the source code in older versions of PHP

CVE-2012-1823

https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2012-1823

There’s a metasploit module to speed up this process

Share on

Twitter Facebook LinkedIn

Tenet

June 12, 2021

‘Tenet’ is a medium rated box on Hack the Box. We’ll be using PHP Object Injection to get RCE and identify a race condition in a custom script for privesc.

‘Skynet’ is a box on TryHackMe. We’ll be enumerating SMB shares, brute forcing a login and exploiting a Remote File Inclusion vulnerability in Cuppa CMS for a foothold. For our root shell we’ll take a look at exploiting some wildcard injection using a script that’s being run as a cronjob.

FFuF Cheatsheet

June 06, 2021

This is a Cheatsheet I created for reference when using FFuF

Ready

May 06, 2021

‘Ready’ is a medium rated box on Hack the Box. We’ll be using a public exploit for a vulnerable Gitlab version for a shell, enumeration and password reuse for privesc and escape a docker container for root

tsustyle

Share on

You may also enjoy

Tenet

Skynet

FFuF Cheatsheet

Ready