Redis NoSQL Database Exploit Using SSH | ...

Redis NoSQL Database Exploit Using SSH | HackTheBox Postman

Feb 25, 2024

We covered the enumeration of Redis NoSQL database server and exploitation using SSH. This was part of HackTheBox Postman

Challenge Description

Postman is an easy difficulty Linux machine, which features a Redis server running without authentication. This service can be leveraged to write an SSH public key to the user's folder. An encrypted SSH private key is found, which can be cracked to gain user access. The user is found to have a login for an older version of Webmin. This is exploited through command injection to gain root privileges.

Full writeup can be found here.

Video Walkthrough

Enjoy this post?

Buy Motasem Hamdan / HackNotes a pizza

More from Motasem Hamdan / HackNotes