Tier 0: Mongod - HackTheBox Starting Point - Full Walkthrough
Learn the basics of Penetration Testing: Video walkthrough for the "Mongod" machine from tier zero of the @HackTheBox "Starting Point" track; "The key is a strong foundation". We'll be exploring the basics of enumeration, service discovery, mongo (NoSQL) databases and more! Write-ups/tutorials aimed at beginners - Hope you enjoy 🙂 #HackTheBox #HTB #CTF #Pentesting #OffSec
HackTheBox: https://affiliate.hackthebox.com/cryptocat-htb
HTB Academy: https://affiliate.hackthebox.com/cryptocat-academy
↢Social Media↣
Twitter: https://twitter.com/_CryptoCat
GitHub: https://github.com/Crypto-Cat
HackTheBox: https://app.hackthebox.eu/profile/11897
LinkedIn: https://www.linkedin.com/in/cryptocat
Reddit: https://www.reddit.com/user/_CryptoCat23
YouTube: https://www.youtube.com/CryptoCat23
Twitch: https://www.twitch.tv/cryptocat23
↢HackTheBox↣
https://affiliate.hackthebox.com/cryptocat-htb
https://twitter.com/hackthebox_eu
https://discord.gg/hackthebox
↢Video-Specific Resources↣
https://www.mongodb.com/nosql-explained/nosql-vs-sql
https://www.mongodb.com/docs/manual/tutorial/install-mongodb-on-debian
https://book.hacktricks.xyz/network-services-pentesting/27017-27018-mongodb
↢Resources↣
Ghidra: https://ghidra-sre.org/CheatSheet.html
Volatility: https://github.com/volatilityfoundation/volatility/wiki/Linux
PwnTools: https://github.com/Gallopsled/pwntools-tutorial
CyberChef: https://gchq.github.io/CyberChef
DCode: https://www.dcode.fr/en
HackTricks: https://book.hacktricks.xyz/pentesting-methodology
CTF Tools: https://github.com/apsdehal/awesome-ctf
Forensics: https://cugu.github.io/awesome-forensics
Decompile Code: https://www.decompiler.com
Run Code: https://tio.run
↢Chapters↣
Start: 0:00
Enumerate ports/services (Rustscan/NMap): 1:16
MongoDB (NoSQL) overview: 4:06
Basic Mongo commands: 6:19
Install MongoSh: 8:32
Explore database: 12:22
Retrieve flag: 13:21
Crack hash? 14:33
End: 16:30
Видео Tier 0: Mongod - HackTheBox Starting Point - Full Walkthrough канала CryptoCat
HackTheBox: https://affiliate.hackthebox.com/cryptocat-htb
HTB Academy: https://affiliate.hackthebox.com/cryptocat-academy
↢Social Media↣
Twitter: https://twitter.com/_CryptoCat
GitHub: https://github.com/Crypto-Cat
HackTheBox: https://app.hackthebox.eu/profile/11897
LinkedIn: https://www.linkedin.com/in/cryptocat
Reddit: https://www.reddit.com/user/_CryptoCat23
YouTube: https://www.youtube.com/CryptoCat23
Twitch: https://www.twitch.tv/cryptocat23
↢HackTheBox↣
https://affiliate.hackthebox.com/cryptocat-htb
https://twitter.com/hackthebox_eu
https://discord.gg/hackthebox
↢Video-Specific Resources↣
https://www.mongodb.com/nosql-explained/nosql-vs-sql
https://www.mongodb.com/docs/manual/tutorial/install-mongodb-on-debian
https://book.hacktricks.xyz/network-services-pentesting/27017-27018-mongodb
↢Resources↣
Ghidra: https://ghidra-sre.org/CheatSheet.html
Volatility: https://github.com/volatilityfoundation/volatility/wiki/Linux
PwnTools: https://github.com/Gallopsled/pwntools-tutorial
CyberChef: https://gchq.github.io/CyberChef
DCode: https://www.dcode.fr/en
HackTricks: https://book.hacktricks.xyz/pentesting-methodology
CTF Tools: https://github.com/apsdehal/awesome-ctf
Forensics: https://cugu.github.io/awesome-forensics
Decompile Code: https://www.decompiler.com
Run Code: https://tio.run
↢Chapters↣
Start: 0:00
Enumerate ports/services (Rustscan/NMap): 1:16
MongoDB (NoSQL) overview: 4:06
Basic Mongo commands: 6:19
Install MongoSh: 8:32
Explore database: 12:22
Retrieve flag: 13:21
Crack hash? 14:33
End: 16:30
Видео Tier 0: Mongod - HackTheBox Starting Point - Full Walkthrough канала CryptoCat
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Decoding, Brute-Forcing and Crafting Flask Session Cookies - "web-intro" [DefCamp CTF 2022]Day 4 - HTB Cyber Santa CTF: HackTheBox Capture The Flag 2021Emdee Five for Life [easy]: HackTheBox Misc Challenge (BeautifulSoup / Burp Intruder)Buffer Overflow (ret2win) with 5 char* Arguments - "Vader" Pwn Challenge [Space Heroes CTF 2022]fs0ciety [easy]: HackTheBox Misc Challenge (ZIP cracking)BitsNBytes [hard]: HackTheBox Stego Challenge (Stego Helper Identification Tool)Eat the Cake! [medium]: HackTheBox Reversing Challenge (UPX packing)Forensics Challenges - HTB x Synack RedTeamFive Capture The Flag (CTF) 2021Marshal In The Middle [medium]: HackTheBox Forensics Challenge (decrypt TLS traffic in wireshark)Blue Shadow [medium]: HackTheBox Forensics Challenge (tweetlord)Pwn: clutter-overflow - picoMini CTF 2021 ChallengeNahamCon CTF 2022: Web Challenge WalkthroughsPusheen Loves Graphs [easy]: HackTheBox Misc Challenge (IDA Pro)Forget Me Not [medium]: HackTheBox Forensics Challenge (volatiliy .dwarf files)JWT Key Confusion & Nunjucks SSTI - "Naughty or Nice" [Day 5: HackTheBox Cyber Santa CTF]Manager [easy]: HackTheBox Mobile Challenge (APK Reversing / Traffic Analysis)Overwriting RBP with an Off-by-One Buffer Overflow - Cake - [Intigriti 1337UP LIVE CTF 2022]0 - ROP Emporium Series - Intro/SetupJSON Web Token Flaws - Python AppSec (by Duo Sec) - Veracode Security Labs Community Edition (free)1: SQL Injection (Union + Blind) - Gin and Juice Shop (Portswigger)HackTheBox Cyber Apocalypse 2021 CTF - Pwn Challenge Walkthroughs