Скачать с ютуб CERTain Doom TryHackMe Walkthrough | Hard в хорошем качестве

CERTain Doom TryHackMe Walkthrough | Hard

In this video we are solving tryhackme's new CTF Challenge CERTain Doom [ https://tryhackme.com/room/certaindoom ]. It's a hard level box, which begins by discovering an arbitrary file upload vulnerability and combining it with CVE-2020-9484 in Apache Tomcat 9 to gain a shell within a docker container and obtaining the first flag. Using the container to scan for internal hosts, we identified two hosts and an internal service with one running the front-end and one running the back-end for it, we pivot using ligolo-ng and setup a tunnel proxy. The service manages documents and by logging into it with predictable credentials, we found a chat log and downloading it, discovered the second flag. After that, using the psychic signatures vulnerability to forge a JWT for another user, we discovered a hidden file belonging to the user and downloading it, we obtained the third flag. Hope you learned something new 🙏🚀❤️ Psychic Signature Ref - [ https://github.com/DataDog/security-l... ] Follow me on social media: ●   / hoodietramp   ●   / hoodietramp   Blog: ● https://blog.h00dy.me Github: ● https://github.com/hoodietramp Mastodon: ● https://mastodon.social/@h00dy ● https://defcon.social/@h00dy ● https://infosec.exchange/@h00dy Join 345y🛸: ●   / discord   Support This Tramp! Donations are not required but are greatly appreciated! 💸BuyMeACoffee: https://buymeacoffee.com/h00dy #tryhackme #ctf #boot2root #redteam #walkthrough #pentesting