InfoSec Write-ups

Home

Newsletter

About

Follow publication

A collection of write-ups from the best hackers in the world on topics ranging from bug bounties…

Follow publication

Member-only story

Soccer — Hack The Box | Writeup with Flag

Hack The Box — Soccer Machine Simple Writeup by Karthikeyan Nagaraj

Karthikeyan Nagaraj

Published in

InfoSec Write-ups

8 min readDec 31, 2022

Phases…

Scanning
Enumeration
Privilege Escalation

Make sure to Connect with HTB Vpn

1. Scanning

Perform a nmap Scan first
nmap -sC -sV <Machine-IP>

┌──(cyberw1ng㉿root)-[~]
└─$ nmap -sC -sV 10.10.11.194
Starting Nmap 7.93 ( https://nmap.org ) at 2022-12-31 22:45 IST
Nmap scan report for 10.10.11.194 (10.10.11.194)
Host is up (0.22s latency).
Not shown: 997 closed tcp ports (conn-refused)
PORT     STATE SERVICE         VERSION
22/tcp   open  ssh             OpenSSH 8.2p1 Ubuntu 4ubuntu0.5 (Ubuntu Linux; protocol 2.0)
| ssh-hostkey: 
|   3072 ad0d84a3fdcc98a478fef94915dae16d (RSA)
|   256 dfd6a39f68269dfc7c6a0c29e961f00c (ECDSA)
|_  256 5797565def793c2fcbdb35fff17c615c (ED25519)
80/tcp   open  http            nginx 1.18.0 (Ubuntu)
|_http-title: Did not follow redirect to http://soccer.htb/
|_http-server-header: nginx/1.18.0 (Ubuntu)
9091/tcp open  xmltec-xmlmail?
| fingerprint-strings: 
|   DNSStatusRequestTCP, DNSVersionBindReqTCP, Help, RPCCheck, SSLSessionReq, drda, informix: 
|     HTTP/1.1 400 Bad Request
|     Connection: close
|   GetRequest…

Create an account to read the full story.

The author made this story available to Medium members only.
If you’re new to Medium, create a new account to read this story on us.

Continue in app

Or, continue in mobile web

Sign up with Google

Sign up with Facebook

Sign up with email

Already have an account? Sign in

Published in InfoSec Write-ups

Last published 22 hours ago

A collection of write-ups from the best hackers in the world on topics ranging from bug bounties and CTFs to vulnhub machines, hardware challenges and real life encounters. Subscribe to our weekly newsletter for the coolest infosec updates: https://weekly.infosecwriteups.com/

Written by Karthikeyan Nagaraj

10.7K Followers

Entrepreneur | Writer | Cyber Security Consultant | AI Researcher TopMate - https://topmate.io/cyberw1ng

Responses (2)

Write a response

What are your thoughts?

Also publish to my profile

Lorenzo Lerate

Mar 9, 2023

good job but you shouldn't have post the flags

--

Mostafa AL MASSRI

Mar 26, 2023

Thank you very much for your efforts, i tried the sql map and i have used the python code as it was mentioned by at last i don't get the credentials even it says the input is injectable
any help?

--

Recommended from Medium

JWT Vulnerabilities in Pentesting: Exploitation Techniques & Security Best Practices

Very Lazy Tech 👾

JWT Vulnerabilities in Pentesting: Exploitation Techniques & Security Best Practices

What is JWT?

Mar 9

HackTheBox Writeup — Easy Machine Walkthrough

In

InfoSec Write-ups

by

Karthikeyan Nagaraj

HackTheBox Writeup — Easy Machine Walkthrough

HTB Guided Mode Walkthrough

Nov 19, 2024

DNS — Port 53 — Pentesting

Very Lazy Tech 👾

DNS — Port 53 — Pentesting

Basic info

Oct 3, 2024

Hack The Box — Web Challenge: Flag Command Writeup

Rahul Hoysala

Hack The Box — Web Challenge: Flag Command Writeup

Let’s go ahead and solve one of HTB’s Ctf Try Out web challenges — Flag Command.

Oct 10, 2024

HackTheBox | Titanic Writeup

In

InfoSec Write-ups

by

Anubhav Uniyal

HackTheBox | Titanic Writeup

This walkthrough details the process of exploiting the Titanic machine (Rated: Easy) on HackTheBox.

Mar 3

WordPress Authentication Bypass Vulnerability, CVE-2024-10924 - Bypass Really Simple Security …

RosanaFSS

WordPress Authentication Bypass Vulnerability, CVE-2024-10924 - Bypass Really Simple Security …

Explore Broken Authentication, API2:2023 vulnerability. Learn how to exploit a WordPress website and understand various mitigation…

Feb 5

See more recommendations

Help
Status
About
Careers
Press
Blog
Privacy
Terms
Text to speech
Teams