JOIN BREACHFORUMS TELEGRAM
[HTB] Sea - Machine
by RedTeamer - Friday August 9, 2024 at 08:04 PM
Banned

Posts: 78
Threads: 16
Joined: Jul 2024
Reputation: 0
#1
Aug 09, 2024, 08:04 PM
[HTB] Sea - Machine
https://app.hackthebox.com/machines/620

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Selling in HTB | Trying to sell information posted for free
Reply
Banned

Posts: 78
Threads: 16
Joined: Jul 2024
Reputation: 0
#2
Aug 10, 2024, 06:10 PM
(Aug 09, 2024, 08:04 PM)RedTeamer Wrote: [HTB] Sea - Machine
https://app.hackthebox.com/machines/620


Share The Updates Here Sea - Machine

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Selling in HTB | Trying to sell information posted for free
Reply
Breached
Member
Posts: 10
Threads: 0
Joined: Apr 2024
Reputation: 0
#3
Aug 10, 2024, 07:12 PM
Scan:
PORT  STATE SERVICE REASON  VERSION
22/tcp open  ssh    syn-ack OpenSSH 8.2p1 Ubuntu 4ubuntu0.11 (Ubuntu Linux; protocol 2.0)
| ssh-hostkey:
|  3072 e3:54:e0:72:20:3c:01:42:93:d1:66:9d:90:0c:ab:e8 (RSA)
| ssh-rsa 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
|  256 f3:24:4b:08:aa:51:9d:56:15:3d:67:56:74:7c:20:38 (ECDSA)
| ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBMMoxImb/cXq07mVspMdCWkVQUTq96f6rKz6j5qFBfFnBkdjc07QzVuwhYZ61PX1Dm/PsAKW0VJfw/mctYsMwjM=
|  256 30:b1:05:c6:41:50:ff:22:a3:7f:41:06:0e:67:fd:50 (ED25519)
|_ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIHuXW9Vi0myIh6MhZ28W8FeJo0FRKNduQvcSzUAkWw7z
80/tcp open  http    syn-ack Apache httpd 2.4.41 ((Ubuntu))
| http-cookie-flags:
|  /:
|    PHPSESSID:
|_      httponly flag not set
| http-methods:
|_  Supported Methods: GET HEAD POST OPTIONS
|_http-title: Sea - Home
|_http-server-header: Apache/2.4.41 (Ubuntu)
Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel

Hitting http.server when you enter your IP at http://sea.htb/contact.php
Reply
Banned

Posts: 40
Threads: 0
Joined: Mar 2024
Reputation: 0
#4
Aug 10, 2024, 07:32 PM
ig we are going on right way

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching | http://c66go4clkqodr7tdjfu76jztjs7w7d3fajdeypxn73v4ju3dt7g5yyyd.onion/Forum-Ban-Appeals if you feel this is incorrect.
Reply
Banned

Posts: 78
Threads: 16
Joined: Jul 2024
Reputation: 0
#5
Aug 10, 2024, 07:45 PM
(Aug 10, 2024, 07:32 PM)AdenBilal Wrote: ig we are going on right way

          Any updates?

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Selling in HTB | Trying to sell information posted for free
Reply
Breached
Member
Posts: 67
Threads: 3
Joined: Jul 2024
Reputation: 21
#6
Aug 10, 2024, 07:46 PM
(Aug 10, 2024, 07:45 PM)RedTeamer Wrote:
(Aug 10, 2024, 07:32 PM)AdenBilal Wrote: ig we are going on right way

          Any updates?

machine has been blooded
Reply
Banned

Posts: 78
Threads: 16
Joined: Jul 2024
Reputation: 0
#7
Aug 10, 2024, 07:48 PM
(Aug 10, 2024, 07:46 PM)UnkownWombat Wrote:
(Aug 10, 2024, 07:45 PM)RedTeamer Wrote:
(Aug 10, 2024, 07:32 PM)AdenBilal Wrote: ig we are going on right way

          Any updates?

machine has been blooded

by u?

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Selling in HTB | Trying to sell information posted for free
Reply
Breached
Member
Posts: 5
Threads: 0
Joined: Aug 2024
Reputation: 0
#8
Aug 10, 2024, 07:49 PM (This post was last modified: Aug 10, 2024, 07:50 PM by leury.)
That's right, the Pwn in less than half an hour xd
Reply
Banned

Posts: 40
Threads: 0
Joined: Mar 2024
Reputation: 0
#9
Aug 10, 2024, 07:54 PM
there is ssrf on the website parameter in contact.php. start python server in your machine and enter that IP in the website with idnf
http://10.10.16.51:1235/idnf

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching | http://c66go4clkqodr7tdjfu76jztjs7w7d3fajdeypxn73v4ju3dt7g5yyyd.onion/Forum-Ban-Appeals if you feel this is incorrect.
Reply
Breached
Member
Posts: 67
Threads: 3
Joined: Jul 2024
Reputation: 21
#10
Aug 10, 2024, 07:56 PM (This post was last modified: Aug 10, 2024, 07:56 PM by UnkownWombat.)
(Aug 10, 2024, 07:48 PM)RedTeamer Wrote:
(Aug 10, 2024, 07:46 PM)UnkownWombat Wrote:
(Aug 10, 2024, 07:45 PM)RedTeamer Wrote:
(Aug 10, 2024, 07:32 PM)AdenBilal Wrote: ig we are going on right way

          Any updates?

machine has been blooded

by u?

no :/
(Aug 10, 2024, 07:54 PM)AdenBilal Wrote: there is ssrf on the website parameter in contact.php. start python server in your machine and enter that IP in the website with idnf
http://10.10.16.51:1235/idnf

this is corrrect, maybe xss too, just trying to figure out how to exploit it
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Hack the box Pro Labs, VIP, VIP+ 1 month free Method RedBlock 23 2,176 1 hour ago
Last Post: kkkato
  [FREE] HackTheBox Academy - CBBH CDSA CPTS All Modules Flags Techtom 20 2,494 Yesterday, 11:06 PM
Last Post: op334
Heart [FREE] HackTheBox All Cheatsheets Tamarisk 3 397 Yesterday, 10:36 PM
Last Post: op334
  [FREE] 300+ Writeups PDF HackTheBox/HTB premium retired Tamarisk 369 92,013 Yesterday, 04:10 PM
Last Post: sabbyahmed
  CBBH Write Ups hiddenhacker 22 6,229 Yesterday, 06:39 AM
Last Post: Usercomplex

Forum Jump:


 Users browsing this forum: 1 Guest(s)