Home » Security Bloggers Network » Hack the Box (HTB) machine walkthrough series — DevOops

Hack the Box (HTB) machine walkthrough series — DevOops

Today, we will be continuing with our exploration of Hack the Box (HTB) machines from previous articles. This walkthrough is of an HTB machine named DevOops.

HTB is an excellent platform that hosts machines belonging to multiple OSes. It also has some other challenges as well. Individuals have to solve the puzzle (simple enumeration plus pentest)  in order to log into the platform and download the VPN pack to connect to the machines hosted on the HTB platform.

Note: Only write-ups of retired HTB machines are allowed. The machine in this article, named DevOops, is retired.

The walkthrough

Let’s start with this machine.

1. Download the VPN pack for the individual user and use the guidelines to log into the HTB VPN.

2. The DevOops machine IP is 10.10.10.91.

3. We will adopt the same methodology of performing penetration testing as we have used previously. Let’s start with enumeration in order to learn as much about the machine as possible.

4. As usual, let’s start with the Nmap scan to gather more information about the services running on this machine. [CLICK IMAGES TO ENLARGE]
<<nmap -sC -sV -oA DevOops 10.10.10.91>>

5. We have port 22 and 5000 opened.

6. Let’s start browsing port 5000. Below is the landing page. We can see an indication of feed.py being present somewhere.

7. Let’s continue the enumeration with directory brute-force, as shown below. As expected, we got a hit on feed. Also, we got hit on an upload.
<<gobuster -u http://10.10.10.91:5000 -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt -t 50>>

8. Let’s browse the upload directory first. Below is the upload page, and it looks like we can upload the XML file to it. As soon as I see this, XXE injection comes to mind. Let’s (Read more...)