[HTB] Zipper — Writeup (OSWE-Prep)

Zipper is a hard difficulty Linux box. Good learning path for:

  • Zabbix-cli Access
  • Zabbix RCE Exploit
  • SUID Binary Hijack

Initial Recon

Nmap

# nmap -Pn --open -T4 -sV -sC -p- 10.10.10.108Starting Nmap 7.80 ( https://nmap.org ) at 2021-04-11…

--

--

--

OSWE | OSCE | OSCP | CREST | Lead Offensive Security Engineer — All about Penetration Test, Red Team, Cloud Security, Web Application Security

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Frequently Asked Questions About DRIP Network

{UPDATE} Backgammon Hack Free Resources Generator

{UPDATE} Gråtass ordner opp Hack Free Resources Generator

Web of Trusted Things — Why we are doing what we do

Reverse Shell Using DLL Hijacking Vulnerability

Data Privacy, why it matters?

CryptoGuyInZA Reward Adjustments

Vent Ambassador Program is now open for applications!

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
bigb0ss

bigb0ss

OSWE | OSCE | OSCP | CREST | Lead Offensive Security Engineer — All about Penetration Test, Red Team, Cloud Security, Web Application Security

More from Medium

CVE-2021–43267: Remote Linux Kernel Heap Overflow — Arbitrary Code Execution

Livestream setup

OpenShift — Day 01

LOG4SHELL: CRITICAL LOG4J VULNERABILITY CVE-2021–44228 (Effects ON Fortigate Firewalls)