HTB Walkthrough Sink

YOUR LINK HERE:

http://youtube.com/watch?v=ZFXg4rz_n1k

This video elaborates about the HTB machine Sink. • • 0:00 Introduction • 1:21 NMAP • 7:42 HTTP Request smuggling • 23:45 Replacing user cookie with admin cookie • 29:50 Obtaining SSH private key from gitea repository • 31:14 User level privilege • 37:21 Obtaining key and secret from gitea repository and configuring aws • 39:02 Obtaining keys using secretsmanager • 42:46 Obtaining david password using secretsmanager get-secret-value • 44:19 Switching to david user and finding servers.enc • 50:26 obtaining the plaintext of servers.enc and decoding to obtain root shell • • For more details on HTTP request smuggling watch my video on • Видеоклип

#############################

New on site

Fiserv Layoffs
Sori Più
Gud Catalogue
Scott Quintuplets
Jac Exam News
Aino Kevät
Anuario Vaticano
Morini
Toyota Hilux
Nurses Wall Calendar