JOIN BREACHFORUMS TELEGRAM
HTB - Blazorized
by bmoon10 - Saturday June 29, 2024 at 07:00 PM
Breached
Member
Posts: 49
Threads: 1
Joined: Jun 2024
Reputation: 0
#1
Jun 29, 2024, 07:00 PM (This post was last modified: Jun 29, 2024, 07:02 PM by bmoon10.)
Blazorized - Windows - Medium

Good luck everyone! Let's tackle this together!

https://app.hackthebox.com/machines/Blazorized
Reply
セクシーハッカー
God
Posts: 1,314
Threads: 226
Joined: Jun 2023
Reputation: 2,203

GOD
#2
Jun 29, 2024, 07:00 PM
I will follow this thread Big Grin
My Service: https://breachforums.hn/Thread-OSINT-Investigation
Reply
Banned

Posts: 36
Threads: 24
Joined: Jun 2024
Reputation: -30
#3
Jun 29, 2024, 07:05 PM
(Jun 29, 2024, 07:00 PM)xzin0vich Wrote: I will follow this thread Big Grin

Arrt de sucé stp , t'en a plein la bouche

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Advertising telegram in stealer logs
Reply
セクシーハッカー
God
Posts: 1,314
Threads: 226
Joined: Jun 2023
Reputation: 2,203

GOD
#4
Jun 29, 2024, 07:13 PM
(Jun 29, 2024, 07:05 PM)0xHublot Wrote:
(Jun 29, 2024, 07:00 PM)xzin0vich Wrote: I will follow this thread Big Grin

Arrt de sucé stp , t'en a plein la bouche

English only. Stop being useless on a usefull forum section. Big Grin
My Service: https://breachforums.hn/Thread-OSINT-Investigation
Reply
Breached
Member
Posts: 49
Threads: 1
Joined: Jun 2024
Reputation: 0
#5
Jun 29, 2024, 07:22 PM (This post was last modified: Jun 29, 2024, 07:35 PM by bmoon10.)
1.could be CVE-2023-36558

2.jwt cookies are used -

{
  "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress": "superadmin@blazorized.htb",
  "http://schemas.microsoft.com/ws/2008/06/identity/claims/role": [
    "Posts_Get_All",
    "Categories_Get_All"
  ],
  "exp": xxxxxxx,
  "iss": "http://api.blazorized.htb",
  "aud": "http://api.blazorized.htb"
}
Reply
Breached
Member
Posts: 3
Threads: 0
Joined: Dec 2023
Reputation: 0
#6
Jun 29, 2024, 08:15 PM (This post was last modified: Jun 29, 2024, 08:15 PM by OneplusSuper.)
LFI?

![notimage.png](..../C:/Program+Files/MySQL/my.ini)
Reply
Breached
Member
Posts: 30
Threads: 3
Joined: Aug 2023
Reputation: 0
#7
Jun 29, 2024, 08:18 PM (This post was last modified: Jun 29, 2024, 08:20 PM by DeDeLaPouille.)
Swagger pages :

http://api.blazorized.htb/swagger/index.html#/
http://api.blazorized.htb/swagger/v1/swagger.json
Reply
Breached
Member
Posts: 17
Threads: 0
Joined: Feb 2024
Reputation: 0
#8
Jun 29, 2024, 08:50 PM
has anyone ran kerbrute
Reply
Breached
Member
Posts: 49
Threads: 1
Joined: Jun 2024
Reputation: 0
#9
Jun 29, 2024, 09:07 PM
(Jun 29, 2024, 08:50 PM)Anaunimans Wrote: has anyone ran kerbrute

[+] guest@blazorized.htb - USER LOCKED OUT
[+] VALID USERNAME:      administrator@blazorized.htb
Reply
Banned

Posts: 12
Threads: 0
Joined: Feb 2024
Reputation: -1
#10
Jun 29, 2024, 09:30 PM (This post was last modified: Jun 29, 2024, 09:34 PM by defxsec.)
[quote="shadow_monarch" pid='663351' dateline='1719692171']
Encontré un subdominio:


administrador.blazorized.htb
api.blazorized.htb
[/cita]

¿Que diccionario usaste para encontrar esos subdominios y que herramienta?

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: English Only Forum| https://breachforums.ai/Forum-Ban-Appeals if you feel this is incorrect.
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  [FREE] CPTS 12 FLAGS pulsebreaker 68 1,939 7 hours ago
Last Post: VictorPipeau
  [FREE] HackTheBox Dante - complete writeup written by Tamarisk Tamarisk 601 91,583 8 hours ago
Last Post: VictorPipeau
  [FREE] 300+ Writeups PDF HackTheBox/HTB premium retired Tamarisk 371 92,798 9 hours ago
Last Post: phannguyenbaouy1
  [FREE] HackTheBox Academy - CBBH CDSA CPTS All Modules Flags Techtom 21 2,615 Today, 05:08 AM
Last Post: popoler
  Hack the box Pro Labs, VIP, VIP+ 1 month free Method RedBlock 23 2,268 Yesterday, 02:10 PM
Last Post: kkkato

Forum Jump:


 Users browsing this forum: 1 Guest(s)