[HTB] Cache — Writeup

This was a medium-difficulty box and good learning path for:

  • Client-side Auth Source Code Review
  • VHOST Enumeration
  • OpenEMR < 5.0.1 — Multiple SQLi
  • OpenEMR < 5.0.1 — Authenticated Remote Code Execution
  • Memcached Exploit
  • Docker Privilege Escalation

Recon