The Hackers Labs - Windows - Ensala Papas (Potato Salad) - Potato Attack
0:00 Start
0:27 Locating the machine IP
1:24 Initial scans
2:35 HTTP enumeration
6:05 File upload vulnerability
22:33 Webshell online
28:35 Initial access
29:25 Privilege escalation - SeImpersonatePrivilege
39:43 We are nt authority system
41:18 Wrap-up
You can download the challenge VM from the following link:
https://thehackerslabs.com/ensala-papas/
Download the file, then unzip the file and deploy the VM using VirtualBox or VMware. You will also need to have an "attacker" VM with security tools installed on it, e.g., Kali Linux, deployed to the same VM network.
The following links are related to topics covered in this challenge:
Evolution of Web Shell Article:
https://www.microsoft.com/en-us/security/blog/2022/12/12/iis-modules-the-evolution-of-web-shells-and-how-to-detect-them/
Github Web.Config Webshell Code:
https://github.com/theshyhat/hackerfrogs/blob/main/walkthroughs/the_hackers_labs/windows/potato_salad/web_dot_config_webshell.md
SeImpersonatePrivilege Entry on HackTricks:
https://book.hacktricks.wiki/en/windows-hardening/windows-local-privilege-escalation/index.html?highlight=seimpersonate#high--seimpersonate-privilege-to-system
Juicy Potato Github:
https://github.com/ohpe/juicy-potato
Join this channel to get access to perks:
https://www.youtube.com/channel/UCNqIidYyWi9Zbr48VV1Xr_g/join
Donations:
https://streamlabs.com/theshyhat/tip
Donations are always appreciated, but never required! All donations will go towards developing new HackerFrogs courses and cybersecurity video content!
HackerFrogs Links:
Twitch:
https://twitch.tv/theshyhat
Kick:
https://kick.com/theshyhat
Reddit:
https://www.reddit.com/r/hackerfrogs/
Видео The Hackers Labs - Windows - Ensala Papas (Potato Salad) - Potato Attack канала theshyhat
0:27 Locating the machine IP
1:24 Initial scans
2:35 HTTP enumeration
6:05 File upload vulnerability
22:33 Webshell online
28:35 Initial access
29:25 Privilege escalation - SeImpersonatePrivilege
39:43 We are nt authority system
41:18 Wrap-up
You can download the challenge VM from the following link:
https://thehackerslabs.com/ensala-papas/
Download the file, then unzip the file and deploy the VM using VirtualBox or VMware. You will also need to have an "attacker" VM with security tools installed on it, e.g., Kali Linux, deployed to the same VM network.
The following links are related to topics covered in this challenge:
Evolution of Web Shell Article:
https://www.microsoft.com/en-us/security/blog/2022/12/12/iis-modules-the-evolution-of-web-shells-and-how-to-detect-them/
Github Web.Config Webshell Code:
https://github.com/theshyhat/hackerfrogs/blob/main/walkthroughs/the_hackers_labs/windows/potato_salad/web_dot_config_webshell.md
SeImpersonatePrivilege Entry on HackTricks:
https://book.hacktricks.wiki/en/windows-hardening/windows-local-privilege-escalation/index.html?highlight=seimpersonate#high--seimpersonate-privilege-to-system
Juicy Potato Github:
https://github.com/ohpe/juicy-potato
Join this channel to get access to perks:
https://www.youtube.com/channel/UCNqIidYyWi9Zbr48VV1Xr_g/join
Donations:
https://streamlabs.com/theshyhat/tip
Donations are always appreciated, but never required! All donations will go towards developing new HackerFrogs courses and cybersecurity video content!
HackerFrogs Links:
Twitch:
https://twitch.tv/theshyhat
Kick:
https://kick.com/theshyhat
Reddit:
https://www.reddit.com/r/hackerfrogs/
Видео The Hackers Labs - Windows - Ensala Papas (Potato Salad) - Potato Attack канала theshyhat
cybersecurity for beginners ethical hacking career cybersecurity basics for beginners cybersecurity ctf for beginners cyber security training for beginners cybersecurity courses for beginners ethical hacking for beginners 2025 cybersecurity tips for beginners cybersecurity guide for beginners cybersecurity jobs for beginners hackerfrogs windows hacking hacker frog hacker frogs thehackerslabs microchoft the hackers labs ensala papas the hackers labs potato salad
Комментарии отсутствуют
Информация о видео
19 апреля 2025 г. 19:00:03
00:43:44
Другие видео канала
