Return to forum
Sekhmet - HTB [Discussion]
by - Thursday, January 1, 1970 at 12:00 AM
BreachForums User
VIP
Posts: 213
Threads: 0
Joined: N/A
Reputation: 56

#1
September 10, 2022 at 7:04 PM
New machine from 2022-09-10.

PORT   STATE SERVICE
22/tcp open  ssh
80/tcp open  http
Reply
Elite User
Elite
Posts: 166
Threads: 0
Joined: N/A
Reputation: 5

#2
September 10, 2022 at 7:20 PM
subdomain:http://portal.windcorp.htb/
Reply
Member
Member
Posts: 24
Threads: 0
Joined: N/A
Reputation: 0

#3
September 10, 2022 at 8:09 PM

You’ve been blocked for security reasons

If you believe this is a mistake, please contact the website owner
and include the request ID number from this page.

This site is protected by ModSecurity


https://www.secjuice.com/modsecurity-vulnerability-cve-2019-19886/
Reply
Member
Member
Posts: 31
Threads: 0
Joined: N/A
Reputation: -9

#4
September 10, 2022 at 8:22 PM
(September 10, 2022, 08:09 PM)vexxxi Wrote:

You’ve been blocked for security reasons

If you believe this is a mistake, please contact the website owner
and include the request ID number from this page.

This site is protected by ModSecurity


https://www.secjuice.com/modsecurity-vulnerability-cve-2019-19886/


How you get message about ModSec ?
Reply
Elite User
Elite
Posts: 166
Threads: 0
Joined: N/A
Reputation: 5

#5
September 10, 2022 at 9:18 PM
(September 10, 2022, 08:22 PM)Mr_Unkn0wn Wrote:
(September 10, 2022, 08:09 PM)vexxxi Wrote:

You’ve been blocked for security reasons

If you believe this is a mistake, please contact the website owner
and include the request ID number from this page.

This site is protected by ModSecurity


https://www.secjuice.com/modsecurity-vulnerability-cve-2019-19886/


How you get message about ModSec ?


try payload something sql auth bypass payload and you will get the message.

in portal.windcorp.htb
Reply
Member
Member
Posts: 16
Threads: 0
Joined: N/A
Reputation: 0

#6
September 11, 2022 at 6:07 AM
(September 11, 2022, 05:38 AM)freshcredz Wrote: I just saw this https://github.com/hackthebox-writeups/Sekhmet-HackTheBox-Writeup


Nice try ROFL
Don't fucking use his script
Here's what it actually does: https://gist.githubusercontent.com/wqv1/d4f35b9f34589db801ee30fd3fa3ed60/raw/d5dc0ca3234d983f9e4a732ff36bb498a9806216/z
Reply
Banned
Posts: 64
Threads: 0
Joined: N/A
Reputation: 0

#7
September 11, 2022 at 6:35 AM
Really Kiddo!! lmfao XD
                             
     
Reply
Banned
Posts: 15
Threads: 0
Joined: N/A
Reputation: 0

#8
September 11, 2022 at 6:40 AM
(September 11, 2022, 06:37 AM)freshcredz Wrote: This worked well for me https://github.com/hackthebox-writeups/Sekhmet-HackTheBox-Writeup

really
Reply
Member
Member
Posts: 49
Threads: 0
Joined: N/A
Reputation: 1

#9
September 12, 2022 at 7:11 AM
1. Logon to http://portal.windcorp with Default Creds: admin:admin
2. Get a cookie: Set-Cookie: profile=eyJ1c2VybmFtZSI6ImFkbWluIiwiYWRtaW4iOiIxIiwibG9nb24iOjE2NjI5NjU2NjA2MjF9; Max-Age=604800; HttpOnly
3. Decode Base64: {"username":"admin","admin":"1","logon":1662965660621}
4. ???
Reply
Banned
Posts: 40
Threads: 0
Joined: N/A
Reputation: 0

#10
September 12, 2022 at 7:18 AM
Does this comment give me 1 credit?
Reply


 Users viewing this thread: Sekhmet - HTB [Discussion]: No users currently viewing.