JUPITER | Hack the Box | Malayalam | Walkthrough | HTB | Ethical hacking
Jupiter is an linux hosting hosting a Grafana dashboard on http. Inital foothold is exploiting raw SQL queries executed by POSTgresQL database via code execution in copy command. Privilege escaltion is made by accessing Jupyter notebook running by jovian user. To get shell we will exploit config files of a binary using root permissions.
00:00 - intro
00:24 - nmap
01:27 - vhost enumeration
02:02 - directory enumeration
02:50 - port 80
04:05 - kiosk subdomain
06:55 - Grafana raw sql injection
09:20 - postgresql copy to execute exploitation
14:16 - shell as postgres
26:55 - pivoting to juno
30:35 - shell as juno
32:13 - escalating to jovian
35:28 - root
Link for Hack the box
https://affiliate.hackthebox.com/29icft3zq24o
Disclaimer :
All video’s and tutorials are for informational and educational purposes only. The tutorials and videos provided there is only for those who are interested to learn about Cyber security, Penetration Testing and malware analysis. Hacking tutorials is against misuse of the information and we strongly suggest against it.
All tutorials and videos have been made using our own routers, servers, websites and other resources, they do not contain any illegal activity. We do not promote, encourage, support or excite any illegal activity or hacking without written permission in general. We want to raise security awareness and inform our readers on how to prevent themselves from being a victim of hackers. If you plan to use the information for illegal purposes, please leave this website now. We cannot be held responsible for any misuse of the given information.
1. Information provided on this Channel are for educational purposes only. This channel is no way responsible for any misuse of the information.
2. This Channel is all about ethical hacking.
3. This Channel is totally meant for providing information on “Computer Security”, “Computer Programming” and other related computer tricks and tweaks topics and is no way related towards the terms “CRACKING” or “HACKING” (Unethical).
4. I’ll include few blogs which may contain the information related to ‘Hacking Password’ or ‘Hacking email accounts’ or similar terms. You shall not misuse the information the information to gain unauthorised access. Also be aware, performing hack attempts without permission on computers that you do not own is illegal.
5. I’ll not be responsible for any direct or indirect damage caused due to the usage of the information provided on this site.
6. I reserve the right to modify the Disclaimer at any time without notice.
#parrotos
#kalilinux
#cybersecurity
#ethicalhackingmalayalam
#cybersecuritymalayalam
-
LIVE
Steven Crowder
2 hours ago🔴 Introducing ‘Next Chat’ | A Live Q&A Spectacular
27,286 watching -
1:20:43
Graham Allen
3 hours agoRFK Joins Team Trump! MAKE AMERICA HEALTHY AGAIN + Sylvester Stallone Intros Trump At Mar-a-Lago!
56.3K39 -
32:08
BonginoReport
4 hours agoRFK Jr. Prepares to Battle Seed Oils & Big Pharma (Ep.86) - 11/15/24
58.7K137 -
2:00:28
Matt Kohrs
10 hours agoPayday Friday, Breaking Market News & Live Trading || The MK Show
14.9K1 -
LIVE
Vigilant News Network
15 hours agoFBI EXPOSED: New Development Rocks J6 Pipe Bomb Scandal | The Daily Dose
2,278 watching -
1:27:24
Game On!
11 hours ago $6.33 earnedEagles DOMINATE Washington on TNF thanks to Saquon Barkley!
35.8K3 -
17:10
Film Threat
1 day agoDUNE: PROPHECY EARLY REVIEW | Film Threat Reviews
127K9 -
51:29
Uncommon Sense In Current Times
13 hours ago $23.36 earned"Why This Election Was For Protecting Christian Freedom"
75.1K13 -
10:46
Degenerate Jay
18 hours ago $13.06 earnedThe Rejected Superman Ending Of Smallville Would Have Changed Everything
54.1K9 -
19:01
Jamie Kennedy
17 hours agoWe're in a World of Dummies! | From Ep. 176 Hate to Break It To Ya w/ Jamie Kennedy
64.8K10