IP: 10.10.110.13
<https://10.10.110.13/admin/>
username: admin
password: admin
flag --> Why is it always this? --> APTLABS{R00t_Dn$_AdM!n}

image.png

Got 2 Domains

DC.Cubano.local --> 192.168.23.10
0x0security.com --> 192.168.20.31

image.png

IP: 10.10.110.88
sqlinjection in search parameter

image.png

Found data

+----------------------+----------------------------------+-------------------+---------------+----------+
| email                | hash                             | mobile            | password      | username |
+----------------------+----------------------------------+-------------------+---------------+----------+
| [email protected] | 35aaa279711af9353dcd8f2e5c22b86b | +90 433 794 13 53 | $Ul3S@t0x0S3c | mak      |
| <blank>              | <blank>                          | <blank>           | <blank>       | mak      |
+----------------------+----------------------------------+-------------------+---------------+----------+
| [email protected] | 3684311f2ab8cdb11eb6bdc159bd880d | <blank> | P@ssw0rd1! | khalifaLife |
| <blank>                 | <blank>                          | <blank> | <blank>    | <blank>     |
+-------------------------+----------------------------------+---------+------------+-------------+
| [email protected] | d8f40ecca9c23d665cb86579ab62c586 | +90 921 525 87 74 | iL0v3l!nux | linuxrobert |
| <blank>                | <blank>                          | <blank>           | <blank>    | <blank>     |
+------------------------+----------------------------------+-------------------+------------+-------------+
| [email protected] | 3684311f2ab8cdb11eb6bdc159bd880d | APTLABS{P@sS0rD_R3Us3} | P@ssw0rd1! | bob.billings |
| <blank>                     | <blank>                          | <blank>                | <blank>    | <blank>      |
+-----------------------------+----------------------------------+------------------------+------------+--------------+

image.png

Now let’s extract the usernames and passwrods

Username: mark
Password: $Ul3S@t0x0S3c
Username: jim.khalifa
Password: P@ssw0rd1!
Username: robert
Password: iL0v3l!nux
Username: bob.billings
Password: P@ssw0rd1!
Username: kim.stone
Password: P@ssw0rd1!
Username: bob
Password: P@ssw0rd1!

now lets get the flag

FlagName: Password123
Flag: APTLABS{P@sS0rD_R3Us3}

image.png

Logged in at Djngo administrator dashboard

IP --> 10.10.110.62:8080
Username: bob.billings
Password: P@ssw0rd1!
Flagname: Certified secure..?
Flag:

image.png