TUTORIAL HTB Forge [Discussion]
by pheonix2021 - September 11, 2021 at 06:03 PM
#1
Lightning 
Hey!
New machine is here
Name:- Forge
OS:- Linux
Point:- 30
Maker:- NoobHacker9999

T-00:01:58:42
#2
yep.............................
#3
Anybody have anything?
#4
(September 11, 2021 at 08:38 PM)smilkey Wrote: Anybody have anything?
Port 21 is ftp (filtered)
Port 22 is ssh (open)
Port 80 is http gallery (open)

Fuzz for subdomains?
#5
The goal is to ssrf on admin.forge.htb
#6
(September 11, 2021 at 09:15 PM)v3c70r Wrote:
(September 11, 2021 at 08:38 PM)smilkey Wrote: Anybody have anything?
Port 21 is ftp (filtered)
Port 22 is ssh (open)
Port 80 is http gallery (open)

Fuzz for subdomains?
Tried. Found nothing. There is an upload page. Tried to upload a php shell but it doesn't work. Same when you try to modify it as a jpeg. There was another box that had a similar exploit like that, but I can't remember which one. I'm probably just doing something wrong
#7
(September 11, 2021 at 09:24 PM)Ro0ted Wrote: The goal is to ssrf on admin.forge.htb

Localhost only? Maybe we need to do ssh tunnelling?
#8
Found user flag

root ?
still thinking ......
#9
(September 11, 2021 at 09:30 PM)trustedsellx Wrote: Found user flag

root ?
still thinking ......

How did you get user.txt sir?
#10
I tried on admin.forge.htb this on admin.forge.htb
X-Originating-IP: 127.0.0.1 X-Forwarded-For: 127.0.0.1 X-Remote-IP: 127.0.0.1 X-Remote-Addr: 127.0.0.1 but not working, anyone?
#11
(September 11, 2021 at 09:37 PM)mobile1 Wrote: I tried on admin.forge.htb this on admin.forge.htb
X-Originating-IP: 127.0.0.1 X-Forwarded-For: 127.0.0.1 X-Remote-IP: 127.0.0.1 X-Remote-Addr: 127.0.0.1 but not working, anyone?

Maybe we need this later. It only runs with localhost so maybe this is for root???
#12
(September 11, 2021 at 09:38 PM)v3c70r Wrote:
(September 11, 2021 at 09:37 PM)mobile1 Wrote: I tried on admin.forge.htb this on admin.forge.htb
X-Originating-IP: 127.0.0.1 X-Forwarded-For: 127.0.0.1 X-Remote-IP: 127.0.0.1 X-Remote-Addr: 127.0.0.1 but not working, anyone?

Maybe we need this later. It only runs with localhost so maybe this is for root???

So how can we get user?

Possibly Related Threads…
Thread Author Replies Views Last Post
TUTORIAL HTB Unicode [Discussion] TDis7 83 10,292 4 hours ago
Last Post: kerjag25
TUTORIAL HTB Stacked [Discussion] pheonix2021 83 27,731 11 hours ago
Last Post: foobanizer
TUTORIAL HTB Bolt [Discussion] pheonix2021 106 42,190 November 28, 2021 at 05:26 AM
Last Post: CRY3PTR

 Users browsing this thread: 1 Guest(s)