Skip to main content
HashnodeZybnev Sergey | Pentester | Blog

Command Palette

Search for a command to run...

THM WriteUP | Corridor

Updated
1 min read
THM WriteUP | Corridor
S
Sergey Zybnev

Professional pentester, technical writer, telegram channel owner

Intro

Hello ethical hackers! Today we are going to pass the Coriddor on TryHackMe. This lab has tags: IDOR, Web.

Recon

Scanning

For no need to enter IP again and again. I exported IP like a variable in current bash shell.

export IP=*.*.*.*

Then i scan the host with rustscan.

Find only web. Ok.

Web

Check source code:

We find a lot of links to strange location. But... may be it's hash?

Hash

Yeah, it's MD5

I will use crackstation for decrypt MD5.

Okey, we decrypt all hashes. It's number from 1 to 13. Ussualy array start from 0. We will also try to start from 0.

Encode 0 with MD5

Exploit IDOR

Insert new md5 hash to IP and found the right door!

#thm#write-up#idor#vulnerability#tryhackme
133 views

Comments

Join the discussion

No comments yet. Be the first to comment.

More from this blog

Инъекция XSS в скрытых полях ввода и мета-тегах

​Введение​ В этом посте автор покажет, как вы можете использовать новую функцию всплывающих окон HTML в Chrome для эксплуатации XSS в мета-тегах и скрытых полях ввода. Все началось, когда я заметил новое поведение всплывающих окон в Chrome на Twitter...

Jul 13, 20233 min read178
Инъекция XSS в скрытых полях ввода и мета-тегах

Zybnev Sergey | Pentester | Blog

19 posts

Professional pentester, programmer and web designer.