GitHub’s Post

Proof of concept for CVE-2024-36401 on GeoServer. This demonstration aims to initiate a reverse shell connection on the target system. Details: https://lnkd.in/gYiPKqqT #cybersecurity #infosec #infosecurity

Just finished Frank Moley's Spring: Spring Security course - recommend it for anyone looking to learn more about Spring security!  #springsecurity #springframework.

Technical tools need technical "How To" guides. That's one of the many things we do for our clients. If you've built a cybersecurity tool and need to let people know how to use it, get in touch! Here's one we made for IPinfo.io's CLI 👇 🔗 https://lnkd.in/gmBhryEj (This article was written by HackerContent! If you need cybersecurity-focused content like this for your organisation, get in touch today: hackercontent.com)

Just Completed: Chemistry from HackTheBox 🚀 Exploited file upload vulnerabilities, cracked hashes, and leveraged a file-read exploit to gain root access. Here is how I tackled it: 🔍 Initial Recon: - Ran rustscan to identify open ports, followed by nmap for deeper analysis. - Used feroxbuster to locate directories. 🌐 Web Application Discovery:  - Created an account and logged in to the application, where I found a .cif file upload feature.  - Discovered an exploit for this upload functionality, confirming it with a sleep 10 command.  - Uploaded a reverse shell payload and gained a reverse shell from the saved file. 💾 Database Extraction:  - Located a database.db file on the box, dumped it with sqlite3 to retrieve an MD5 hash of the user’s password.  - Cracked the hash using Crackstation, then accessed the box as that user via SSH. 🔒 Privilege Escalation:  - Found a service listening on port 8080, forwarded it to my local machine with SSH.  - Analyzed the service in Burp Suite, identifying it as ahttpio. Discovered an exploit for this service, requiring a specific directory.  - Located the directory with ffuf and used the exploit to read any file as root. 👑 Root Access:  - Accessed root.txt using the file-read exploit and completed the box. Proof: https://lnkd.in/g94Ey3gz Writeup: https://lnkd.in/g8C-FimP #HackTheBox #Cybersecurity #PenTesting #Linux #CTF #InfoSec #EthicalHacking #RedTeam #CyberSkills #BugBounty #CaptureTheFlag #OffensiveSecurity #LearningByDoing

The flaw could allow attackers to bypass Nuclei’s template signature verification process to inject malicious codes into host systems. A widely popular open-source tool, Nuclei, used for scanning vulnerabilities and weaknesses in websites, cloud applications, and networks is found to have a high-severity flaw that could potentially allow attackers to execute malicious codes on local systems. #CyberSecurity #cyberattack #hackers #Technology #Threats

By completing the "Introduction to GitHub Advanced Security" course, I got a nice overview of GHAS features, including Secret Scanning (to protect tokens and secrets), Code Scanning (to check for security vulnerabilities), and Dependabot (to check for dependencies in libraries and frameworks that are part of the codebase).

Just finished Spring: Spring Security! Check it out: https://lnkd.in/eqbsDfU7 #springsecurity #springframework

This writeup is a great illustration of how innocuous vulnerabilities can be chained together to produce something quite interesting. As a defender, this underscores the need for a defense-in-depth approach with multiple mitigations, using tactics like checking invariants from services and blocking unnecessary network access. Even "minor" security issues warrant fixing, as this kind of complex security control failure required several lower-severity issues. It's also interesting because it illustrates some little-known features (e.g. http://0 being equivalent to localhost.) https://lnkd.in/g4rQbCrn by Orange Tsai h/t Lee Holmes

After reading Orange Tsai research about path normalization and diving deeper into the topic, I gained a deeper understanding of how critical this vulnerability can be. Inspired by the findings, I created a simple tool called PathBreaker. PathBreaker generates a list of payloads based on user inputs, specifically designed to test for path normalization vulnerabilities in web applications. This tool helps security professionals quickly identify weaknesses in path handling and prevent unauthorized access due to misconfigured path parsers. https://lnkd.in/dDTkDGe8 #CyberSecurity #PenetrationTesting

🚀 Day 2: Banner Grabbing & Service Enumeration – Part of my 7-day cybersecurity challenge! Today, I focused on #banner grabbing, an essential technique for collecting information about services running on open ports. This helps in understanding the software versions in use and lays the groundwork for identifying any potential vulnerabilities later on. 🔍 Steps I Followed: 1. Used the command nmap -sV -sC -p80,3306 (ip address) to capture service banners. 2. Gathered version details for services running on detected open ports. 3. Cross-checked the versions with known vulnerabilities databases (manual check after grabbing). Key Findings: Port 80 (Apache): Default Apache page detected. Port 3306 (MariaDB): Standard MariaDB service running. Additional output highlighted some configuration details that don't pose immediate risks but offer insights into how the system is set up. While banner grabbing didn’t reveal any direct vulnerabilities, it provides valuable context for deeper analysis. Excited for Day 3: Web Server Vulnerability Assessment with Nikto! Stay tuned for more insights! 💻🔒 #cybersecurityChallenge #BannerGrabbing #penetrationTesting #ethicalHacking