Skip to content

874anthony/encoding-autopwn

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
README.md
README.md
 
 
encoding_autopwn.py
encoding_autopwn.py
 
 

Repository files navigation

AutoPwn script for the Encoding HackTheBox machine.

Usage

python3 encoding_autopwn.py -l <local_IP> -p <local_port>
python3 encoding_autopwn.py -lhost <local_IP> -lport <local_port>

Example:

python3 encoding_autopwn.py -l 10.10.14.29 -p 4444

The script will:

  • Create a reverse shell hitting and endpoint vulnerable to command injection through PHP Filter chains
  • Add a new post-commit hook to the .git folder to add a new .ssh key to the authorized_keys file
  • Commit using the script that is inside the Encoding box as svc user
  • Then we can login as svc user using the new ssh key through SSH
  • Grab the user flag

About

Script for autopwn and getting a root shell in the Encoding HTB Machine.

Resources

Readme
Activity

Stars

4 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages