HACKTHEBOX (taking invite code)

                                      POC OF HACKTHEBOX(how to take invite code)
Lab Environment
My Machine
Linux kali 4.13.0-kali1-amd64 #1 SMP Debian 4.13.10-1kali2 (2017-11-08) x86_64 GNU/Linux
Website Involved In The Process
https://www.hackthebox.eu
Steps involved
• Open the official website of hackthebox as mentioned above


• click on the join option which is present ont the top
• After clicking on join we will be asked to provide invite code which we dont have ,
  so just input random code and press enter .


• Then view the source of the page saying invalid code
• Just observe the source carefully you’ll see src =”/js/inviteapi.min.js”
• click on that link you’ll be redirected to a new page containing the code ,which is not easy to understand .


• We can see two things in the code i.e makeinvitecode (highlighted) and POST (in same line as of invite code)
• it clearly means that there is POST method .
• means we have to proceed using this code .
• Copy the code and open jsbeautifier.org
• paste the code in the provided field of jsbeautifier.org


• jsbeautifier has given me something really interesting i.e api/invite/how/to/generate
• when i tried to open the above url ,error page is displayed
• we already know that we have to use POST request, as there is involvement of post   method.
• So i fired up curl in terminal and used the following command to send a POST request to the given url (url:https://www.hackthebox.eu/api/invite/how/to/generate)
        curl command : curl -X POST https://www.hackthebox.eu/api/invite/how/to/generate
• got something with encryption type base 64 (encryption type revealed in terminal)


• Decoded that using online base 64 decoder.
        Result after decoding : In order to generate the invite code , make a POST request to                                      
      api/invite/generate
• so again i used curl to make a POST request on the url (url: https://www.hackthebox.eu/api/invite/generate)
        curl command : curl -X POST  https://www.hackthebox.eu/api/invite/generate
• again we got something encrypted .
• Again used base64 decoder as i know the encryption type .(google will directly let you know th e encryption type)
• After decoding i got the key


• Provided the key in the input method and finally got registration panel .

Popular posts from this blog

Calculat3 M3 | CTF Learn

Image
This walkthrough will demonstrate the simple challenge based on command injection Calculat3 M3 This is the challenge page we got after visiting the given link. I provided random input in this calculator and intercepted the request with BurpSuite I got one parameter "expression" taking the values  Tried for command injection with ";ls" Forwarding the above request finally Got the Flag
Read more

TryHackme: Blue Walkthrough

Image
Task 1: Recon After we've connected to the tryhackme network the first task is to enumerate the target. We use Nmap for scanning the target IP. Command Used : nmap -sS -Pn <target-ip> -sS : Scan using TCP SYN scan -Pn : Treats all host as online --skip host discovery Next we used a command to find the vulnerability on the target machine. Command Used : nmap --script vuln <target-ip> --script : Specify the --script option to choose your own scripts to execute by providing categories , script file names, or the name of directories full of scripts you wish to execute. vuln : These scripts check for known vulnerabilites and generally only report results if they are found. Below, we see that nmap is indicating the target may be vulnerable to ms17-010(on the left0 and we can verify this using metasploit. To start Metasploit use command "msfconsole" We start by simply doing a search for ms17-010 Here we use module 2 i.e. exploit/windows
Read more

CTF - Dina : 1.0.1 walkthrough

Image
     Lab Environment  : Attacker’s Machine :  Linux kali 4.13.0-kali1-amd64 #1 SMP Debian 4.13.10-1kali2(2017-11-08) x86_64 GNU/Linux Vulnerable Machine : Dina: 1.0.1 Scanning phase route -n (To know the gateway) i.e 172.16.60.2 arp-scan --local (to know the devices connected to the local network)   Vulnerable machine IP : 172.16.60.154           Using nmap for scanning the IP : nmap -sS -sC -sV  172.16.60.154 We got one open port i.e 80 and http service is active Since the port 80 is open and http service is active then we can open the IP in browser.   Another nmap syntax to know vulnerability if any : nmap --script vuln 172.16.60.154 Now further using dirb for scanning the directories : dirb http://172.16.60.154 Some results are obtained after using dirb .  Opened the http://172.16.60.154/robots.txt and found something interesti
Read more