This was a good one! This is a walkthrough of OffSec Proving Grounds machine “Interface”. I haven’t seen any walkthroughs of this machine out there. In this video we use hydra to brute force a node.js web application after using the browser’s developer tools to discover API endpoints (user list). We then use developer tools again along with Burp Suite to escalate our access and exploit the file backup feature of the app to get a root shell ***SPOILER***Walkthrough of the machine called “Interface” in the Offsec Proving Grounds…don’t watch unless you want help getting through the machine.
Posted inEthical Hacking Hacking Linux Networking Node.js Offsec Python Security Tutorial Walkthrough
Offsec Proving Grounds Walkthrough – Interface
