Harry Potter Part I: Aragog

  • HTTP leveraging wordpress
  • Feroxbuster, wpscan
  • Searchsploit
  • Msfvenom and Metasploit
  • Process Spy (pspy)
Starting the box
  • wordpress has some database connections, so there may be a password
  • mysql is running on the box
  • there is a weird file in /opt/.backup.sh
  • dbpass and dbuser are listed in plain text
Wordpress database
Running john the ripper
Lateral movement to hagrid98
temporary copies
pspy64s output
our file was moved
Gaining root

--

--

--

Cyber Enthusiast and sharing some knowledge in a systematic way

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

They Threatened To Release My Masturbation Video

WHAT is Authentication and Authorization

Privacy in America vs. Europe: Here’s why the EU does data better

{UPDATE} ANYCARD! Hack Free Resources Generator

The Security Reasoning Behind the Massive Cloud ERP Migration

All the Good that Charter Spectrum Internet Has To Offer

Mobile phones and Bluetooth devices now exhibit a global security risk

Shield your servers with Delete Protection

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
ArtilleryRed

ArtilleryRed

Cyber Enthusiast and sharing some knowledge in a systematic way

More from Medium

Emerging Cybersecurity Trends in 2022 & Beyond

Cyber Security in 2036

The Human Factor 👤 & BlackCat Ransomware 🐈

How contact forms can be exploited to conduct large scale phishing activity?