I completely missed the password in the user comment, but got code exec through RT itself, you can define a custom action and run perl code. Also I was very lazy and just ran the windows version of puttygen through wine.
I was trying to do that but didint use pearl code, could you share where you found that cve? Didint find anything more specific, just vague explanations
@@superfadelito it's not a CVE, it's a feature. They're called Scrips in RT. You can assign an action to a trigger for example when a ticket gets a comment, you can run a scrip.
what?! crazy, I remember writing a whole article last year on how to extract those password from memory to then exploit them. now i see this wrong and even a gitbuh python script for it. Lmao
This was my first htb, excited to see here
was just searching for CVE's for this one, but failed to look into default username and passwords.. Another great video, Ipp!
Hey Ipp, who's your favorite SpongeBob character and why is it Squidward?
Rødgrød med fløde is a Danish tungtwister for joking with foreigners. It is also a dish but it's like an inside joke in Denmark
Ipp's a keeper
Thanks, this video really helped me out!
Every detail matters, I'm interested for sure no matter how long the video is
yeah, I'm glad I just logged into commando for this box, but It's nice to see how I could have done it in linux.
I completely missed the password in the user comment, but got code exec through RT itself, you can define a custom action and run perl code.
Also I was very lazy and just ran the windows version of puttygen through wine.
I was trying to do that but didint use pearl code, could you share where you found that cve? Didint find anything more specific, just vague explanations
@@superfadelito it's not a CVE, it's a feature. They're called Scrips in RT. You can assign an action to a trigger for example when a ticket gets a comment, you can run a scrip.
Miss u and love u sir
what?! crazy, I remember writing a whole article last year on how to extract those password from memory to then exploit them. now i see this wrong and even a gitbuh python script for it. Lmao
very nice
Push!
can you also do new blockchain challenges