Walkthrough for Shocker - A Vulnerable Machine [HackTheBox] by cristi

cybersecurity · @cristi · May 23 '18

$15.78

Walkthrough for Shocker - A Vulnerable Machine [HackTheBox]

In this video I demonstrate how I get into and own a vulnerable virtual machine from hackthebox.eu. This box, as its name might suggest, is vulnerable to a shellshock exploit.

For those who don't know, shellshock is a vulnerability that has been laying unpublished for years, until it was released a couple of years ago. So, this exploit has been existing in unix based systems since 1989. 

A decent estimate would be that during all of its years of existence, the vulnerability might have been affected billions of devices. So, this vulnerable machine and its main vector of attack is based on the shellshock vulnerability. 

First you get a shell using a shellshock exploit and then you escalate your privileges (you get inside the machine as an unprivileged user). I hope you enjoy this video and I hope that you learn something useful from it - that will help you protect and secure the systems you manage. 

<center>https://www.youtube.com/watch?v=ovyJxDrB3C8</center>
___
### <center>To stay in touch with me, follow @cristi</center>   
___
[Cristi Vlad](http://cristivlad.com) Self-Experimenter and Author

👍 donkeypong, busy.pay, cristi, analisa, gavvet, ace108, kevinwong, pharesim, decebal2dac, mrtv2, jasonstaggers, coinbitgold, jens84, dragonslayer109, team-leibniz, geke, thecryptofiend, scaredycatguide, alexvan, mandela, veleje, timsaid, ngos, sportspodium, mitchelljaworski, sme, africaunited, schro, brobear1995, jacor, zam398, brightideas, arconite, sendingtime, hxr, jakescvlog, viorel, filterfield, jacor-witness, thetroublenotes, nurhayati, gordon92, expectantfig, scribdbloat, amphora

`author`	cristi
`permlink`	walkthrough-for-shocker-a-vulnerable-machine-hackthebox
`category`	cybersecurity
`json_metadata`	{"community":"busy","app":"busy/2.4.0","format":"markdown","users":["cristi"],"links":["/@cristi","http://cristivlad.com"],"tags":["cybersecurity","busy","pentesting","penetration-testing","offensive-security"]}
`created`	2018-05-23 11:20:42
`last_update`	2018-05-23 11:20:42
`depth`	0
`children`	1
`last_payout`	2018-05-30 11:20:42
`cashout_time`	1969-12-31 23:59:59
`total_payout_value`	13.296 HBD
`curator_payout_value`	2.484 HBD
`pending_payout_value`	0.000 HBD
`promoted`	0.000 HBD
`body_length`	1,114
`author_reputation`	128,305,218,872,904
`root_title`	"Walkthrough for Shocker - A Vulnerable Machine [HackTheBox]"
`beneficiaries`	`[]`
`max_accepted_payout`	1,000,000.000 HBD
`percent_hbd`	10,000
`post_id`	57,248,800
`net_rshares`	4,094,654,522,148
`author_curate_reward`	""

properties (23)vote details (45)

voter	rshares	pct
analisa	417,212,186,381	10%
pharesim	82,808,211,808	0.02%
donkeypong	1,358,082,099,024	10%
gavvet	293,692,389,899	2%
kevinwong	154,335,958,253	2.3%
dragonslayer109	45,379,552,915	2%
thecryptofiend	21,051,236,089	25%
coinbitgold	53,546,965,688	100%
schro	1,650,443,430	100%
jacor	1,258,174,680	2%
jens84	46,333,345,091	25%
arconite	904,896,734	1.15%
team-leibniz	44,870,627,545	40%
ace108	162,620,421,558	17%
jasonstaggers	54,990,648,994	25%
timsaid	10,916,688,089	2%
cristi	449,240,528,926	100%
scaredycatguide	17,926,678,091	24%
geke	37,889,293,669	50%
mrtv2	55,450,159,735	100%
busy.pay	642,211,402,297	7.62%
mitchelljaworski	5,498,968,189	25%
decebal2dac	66,115,792,951	100%
brobear1995	1,636,928,765	100%
alexvan	16,660,207,056	20%
mandela	11,976,451,526	2%
veleje	11,844,368,667	100%
sportspodium	6,795,596,314	2%
viorel	462,490,830	75%
africaunited	3,057,875,275	2%
ngos	8,165,230,472	2%
nurhayati	100,247,737	1.15%
sme	4,650,023,428	2%
jakescvlog	534,320,274	100%
gordon92	95,968,303	1.15%
hxr	592,521,537	100%
thetroublenotes	225,612,242	2%
brightideas	980,357,502	2%
jacor-witness	367,451,751	2%
zam398	1,251,396,818	100%
filterfield	390,953,264	100%
scribdbloat	90,470,549	100%
amphora	84,357,670	100%
expectantfig	92,304,338	100%
sendingtime	612,717,794	100%