Friday is here and It’s time for more THM!
Today we move on to the Command Injection room!
Topics covered within this room are Introduction (What is Command Injection?), Discovering Command Injection, Exploiting Command Injection, Remediating Command Injection and Practical: Command Injection (Deploy).
In this last section we are tasked with exploiting the DiagnoseIT form on the page which ping’s an address within the network.
Firstly we check that it can scan localhost, meaning that the form is not just accepting numerical input and will accept strings aswell.
After this we use localhost and & the whoami command to view the context of the user which is www-data.
After this we use cat and the flag directory to get the flag.
THM{COMMAND_INJECTION_COMPLETE}
Overall, quick and easy room for a Friday which I like but also a very useful room which was quite fun and straight forward to understand!
THM Update –
Until next time & don’t sleepwalk through life!
Hágooshį́į́