0xBEN
/
Sign up to 0xBEN!
Already have an account? Sign in

HackTheBox | POV

In this walkthrough, I demonstrate how I obtained complete ownership of POV on HackTheBox
0xBEN
16 min read
HackTheBox | POV
🛑
This box is still active on HackTheBox. Once retired, this article will be published for public access as per HackTheBox's policy on publishing content from their platform.

Clicking the Subscribe button below WILL NOT get you access to this article (although I would be grateful for your subscription otherwise).

Initial Foothold Hint:

  • Are there any particular input points or buttons on the web page that you can test user input or tamper with URL query parameters?
  • Look at particular words in the URL query parameters and if you're not sure what they are, ask Google how they can be abused

Privilege Escalation Hint:

  • Any interesting files on the file system?
  • What privileges does your new user session have?
  • You might need to use a meterpreter shell to finish the job

Read the full story

Sign up now to read the full story and get access to all posts for Pending Publication tier only.

Subscribe
Already have an account? Sign in
0xBEN
Great! You’ve successfully signed up.
Welcome back! You've successfully signed in.
You've successfully subscribed to 0xBEN.
Your link has expired.
Success! Check your email for magic link to sign-in.
Success! Your billing info has been updated.
Your billing was not updated.