00:00 Introduction 00:10 Nmap scan 00:30 Enumeration of port 80 01:20 Running Gobuster 02:20 Trying SSTI Server side template injection 04:00 Using XSS to grab admin cookie 06:30 Casino access 07:00 Exploiting SSRF to get access to an internally open port 09:00 Using RCE to get a ssh session on the box 12:40 Finding git repository with credentials 13:50 Using pythonpath to load and execute vulnerable module running as root ... https://www.youtube.com/watch?v=ZwYqDZOvUpY
CTF: Inferno CTF
Link: https://infernoctf.live/
CTFTime link: https://ctftime.org/event/951
Category: Reversing
Challenge name: Where did he GO?
Description: Get Set Go...
Difficulty: 1/10
...
https://www.youtube.com/watch?v=i2fc-709q0A