Posts

Room: DogCat Room create by: Jammy Vulnerabily tipe: Local File Inclusion (LFI) OWASP WSTG: Testing for Local File Inclusion Tags: #LFI #write-up #TryHackMe #log_poisoning #command_injection #docker_scape Author: Rafael Toguko Write-up date: 2022-01-18 Objectives Capture four flags from the box with LFI vulnerability doing escalation privileges, and docker escape to the root machine. TL;DR on the end of the page! Write-up machine “dogcat” on TryHackMe Starting Recon I always start doing at least a simple nmap, even on machines like this one that I know is a web LFI vulnerability....

I’m migrating my old Pelican Blog to a Hugo Blog engine, so this is just a test before starting to put my posts here, and also on medium and LinkedIn. Below is just to test of the PaperMod typography, image, code syntax highlight, etc. Header 1 Text below header 1 Header 2 Text below header 2 Header 3 Text below header 3 Topics: Topics with header 3 Headers Table Test Code highlight Python Code highlight Go code highlight Images PNG image JPG image Table Test Table test with all rows centralized...