Post

HackTheBox - CozyHosting

Posted Updated
By Muhammad Khoirul Huda
1 min read

Desktop View

CozyHosting is one of the Easy Machines from HackTheBox, where in CTF CozyHosting we will learn about PSQL.

Introduction

  • Connect CozyHosting using Pwnbox or OpenVPN.
  • Spawn machine.

Enumeration

To check the target connection and port, we can use Ping and Nmap.

Ping

After spawn machine, we can start with ping Target IP.

1

Nmap
cuy
  
1

– masih kosong –
  • pertama nmap
  • buka ip url brw(browser), gabisa? tambahkan di etc/hosts
  • stlh itu buka brw lagi, bisa kan?
  • nah, coba fuzzing pakai feroxbuster/gobuster/dirsearch
  • stlh fuzzing, nnti hasilnya ada …/actuactor/sessions
  • bentar nnti lanjut lagi…
  HackTheBox, Starting Point
  easy psql databases web hackthebox
 This post is licensed under  CC BY 4.0  by the author.