Cap | Hack The Box | Write-up
Hlo there!!
Welcome back to another blog, in this blog I will solve “Cap” a vulnerable machine of Hack the Box which was released on 5 June 2021 .
So lets start by doing Nmap scan on the target ip…
By looking at the result of Nmap scan we can confirm that 3 ports are open :- Port 21 : FTP, Port 22 : SSH & Port 80 : HTTP
Since HTTP is the largest attacking surface, it is recommended to have a look on it first…
This is the default homepage of the website. You can see that there’s a column on the left side of the website “Security Snapshots (5 Second PCAP + Analysis)”. We can get some juicy information from there, so lets click on it….
You can see that there is an option to download the PCAP file, download it into your local machine… Make sure to change the parameter to 0 or
Now lets open the PCAP file in Wireshark and analyze it…
Here we got the login credentials of FTP user…
nathan : Buck3tH4TF0RM3!
Login to FTP port using the creds above…
We got the user flag or user.txt
User flag : f48271872b352ced2e9d88e3448441df
SSH was also running, lets login using the FTP creds which we got earlier…
Login was successful, and we also got the root privilege by running :-
python3 -c ‘import os; os.setuid(0); os.system(“/bin/sh”)’
Root flag : 8c77dce57fd3b13f5194ce16360c7598
