HTB - Medium on Home https://ropchainski.com/categories/htb---medium/ Recent content from Home Hugo en-us All articles on this blog are licensed under the BY-NC-SA license agreement unless otherwise stated. Please indicate the source when reprinting! Tue, 29 Jul 2025 00:00:00 +0000 HTB - Craft https://ropchainski.com/post/htb/medium/craft/ Tue, 29 Jul 2025 00:00:00 +0000 https://ropchainski.com/post/htb/medium/craft/ HTB - Craft

Author: ToonExodia()

Craft is a medium-difficulty Linux box that begins with exploring a public Git service called gogs. This box demonstrates a full attack chain involving an eval() injection vulnerability in a Python API, SQL credential extraction, database enumeration, and lateral movement via exposed SSH keys. Privilege escalation is achieved using a misconfigured Vault setup that allows one-time SSH login as root.

Enumeration

Initial Scan 

nmap -sCV -v -p- 10.10.10.110

nmap.png

Published on 2025-07-29 at Home, last modified on 2025-07-29

]]> HTB - MediumLinux