Категории

HackTheBox Giddy Walkthrough | SQL Injection & Golang exe Privilege Escalation

Опубликовано: 22 Январь 2025
на канале: I.T Security Labs
536
17

Welcome to my detailed walkthrough of the HackTheBox machine "Giddy"! In this video, I will guide you through the entire process of exploiting this Windows-based machine, from initial enumeration to gaining root access.
Key Steps Covered:
1) Enumeration: Using tools like Nmap and Gobuster to identify open ports and directories.
2) SQL Injection: Exploiting a SQL injection vulnerability to capture NTLMv2 hashes.
3) Hash Cracking: Using John the Ripper to crack the captured hashes and retrieve user credentials.
4) Initial Access: Logging in via PowerShell Web Access with the cracked credentials.
5) Privilege Escalation: Crafting a Golang binary to exploit a vulnerability in Ubiquiti UniFi Video for privilege escalation.

**This is for educational purposes only ***

play_arrow
7,523
5

Videoclip Paulina Danza

Videoclip Paulina Danza
play_arrow
257
29

Selling my Soul to Jesus to Finally Win a Game | TBOI Repentance

Selling my Soul to Jesus to Finally Win a Game | TBOI Repentance
play_arrow
2,177
72

What it REALLY means to be a Chief Information Security Officer | What is a CISO?

What it REALLY means to be a Chief Information Security Officer | What is a CISO?
play_arrow
174
13

Welcome to Newsgroup

Welcome to Newsgroup
play_arrow
6,024
505

Cambios en ONE Ecosystem para la Red, se ha tomado una decisión

Cambios en ONE Ecosystem para la Red, se ha tomado una decisión
play_arrow
36,899
1.3 тыс

YANG BENER AJA! BARU TURUN KETEMU 4 SQUAD! DAPAT 31 KILLS! - PUBG MOBILE

YANG BENER AJA! BARU TURUN KETEMU 4 SQUAD! DAPAT 31 KILLS! - PUBG MOBILE
play_arrow
4,331
32

What is imperative sentence/definition of imperative sentence in English grammar/imperative sentence

What is imperative sentence/definition of imperative sentence in English grammar/imperative sentence
play_arrow
1,703
14

Heavy Bass Earphone UiiSii U1 Unboxing | long Lasting | Best Quality Earphone

Heavy Bass Earphone UiiSii U1 Unboxing | long Lasting | Best Quality Earphone
Похожие видео
play_arrow
NHA lab deployment party

NHA lab deployment party
play_arrow
02 Purple Team Cyber Range with NHA-GOAD - How To connect To Ludus with Wireguard

02 Purple Team Cyber Range with NHA-GOAD - How To connect To Ludus with Wireguard
play_arrow
01 - How To Setup a Purple Team Cyber Range with NHA-GOAD & Elastic SIEM on Ludis | AUTOMATED

01 - How To Setup a Purple Team Cyber Range with NHA-GOAD & Elastic SIEM on Ludis | AUTOMATED
play_arrow
Tryhackme Publisher Walkthrough | App Armor Bypass Privesc

Tryhackme Publisher Walkthrough | App Armor Bypass Privesc
play_arrow
How To Deploy Active Directory with Elastic SIEM Cyber Range for Purple Teaming in Ludus

How To Deploy Active Directory with Elastic SIEM Cyber Range for Purple Teaming in Ludus
play_arrow
HackTheBox Knife boot2root | Step-by-Step Walkthrough

HackTheBox Knife boot2root | Step-by-Step Walkthrough
play_arrow
HackTheBox Giddy Walkthrough | SQL Injection & Golang exe Privilege Escalation

HackTheBox Giddy Walkthrough | SQL Injection & Golang exe Privilege Escalation
play_arrow
nmap-did-what, A Cool way to view nmap results

nmap-did-what, A Cool way to view nmap results
play_arrow
Tryhackme CyberLens Walkthrough, NO Metasploit, Windows pentesting

Tryhackme CyberLens Walkthrough, NO Metasploit, Windows pentesting
play_arrow
Investigating C2 Traffic | Tryhackme ItsyBitsy Walkthrough

Investigating C2 Traffic | Tryhackme ItsyBitsy Walkthrough
play_arrow
HackTheBox Bank Walkthrough: Learning Penetration Testing for beginners

HackTheBox Bank Walkthrough: Learning Penetration Testing for beginners
play_arrow
Unboxing the youtube silver button award | How and why i make videos

Unboxing the youtube silver button award | How and why i make videos
play_arrow
Tryhackme Vulnet Roasted Walkthrough. Active Directory Pentesting For Noobs

Tryhackme Vulnet Roasted Walkthrough. Active Directory Pentesting For Noobs
play_arrow
Hackthebox Toolbox Walkthrough in Guided Mode . Windows Docker Container Escape

Hackthebox Toolbox Walkthrough in Guided Mode . Windows Docker Container Escape
play_arrow
Breaching Game Of Active Directory Part 8 | AD GPO exploitation & Detection using Security Onion

Breaching Game Of Active Directory Part 8 | AD GPO exploitation & Detection using Security Onion
play_arrow
Investigating A Ransomware Attack in Splunk : Tryhackme PS Eclipse Walkthrough

Investigating A Ransomware Attack in Splunk : Tryhackme PS Eclipse Walkthrough
play_arrow
Directory Traversa vulnerability ctf : HACKTHEBOX OPENSOURCE CTF WALKTHROUGH

Directory Traversa vulnerability ctf : HACKTHEBOX OPENSOURCE CTF WALKTHROUGH
play_arrow
🔒🛡️ LIVE HACK & HUNT SHOWDOWN: Game Of Active Directory vs. Security Onion! 🔍

🔒🛡️ LIVE HACK & HUNT SHOWDOWN: Game Of Active Directory vs. Security Onion! 🔍
play_arrow
How To Enumerate and Use Squid Proxy | Squid, Offsec Proving Grounds Walkthrough, OSCP Prep

How To Enumerate and Use Squid Proxy | Squid, Offsec Proving Grounds Walkthrough, OSCP Prep
play_arrow
HacktheBox DevOops Walkthrough | How To Enumerate .git for secrets

HacktheBox DevOops Walkthrough | How To Enumerate .git for secrets
play_arrow
Tryhackme Red Team Capstone Challenge Part 2 | Gaining Initial Access

Tryhackme Red Team Capstone Challenge Part 2 | Gaining Initial Access
play_arrow
Tryhackme Red Team Capstone Challenge Part 1 | Understanding the challenge

Tryhackme Red Team Capstone Challenge Part 1 | Understanding the challenge
play_arrow
Breaching Game Of Active Directory Part 7 | How To Enumerate Active Directory With Bloodhound

Breaching Game Of Active Directory Part 7 | How To Enumerate Active Directory With Bloodhound
play_arrow
How Windows EDR Detects and Defends against SharpHound

How Windows EDR Detects and Defends against SharpHound