ioc[.]one - OSINT Cyber Threat Intelligence Database

Exploiting Ansible Galaxy Vulnerabilities | HackTheBox Intuition Writeup

Tags

attack-pattern:

Data Credentials - T1589.001 Domains - T1583.001 Domains - T1584.001 Javascript - T1059.007 Python - T1059.006 Server - T1583.004 Server - T1584.004 Ssh - T1021.004 Vnc - T1021.005 Vulnerabilities - T1588.006 Connection Proxy - T1090 Scripting - T1064 Sudo - T1169 Scripting

Show in Graph

Common Information

Type	Value
UUID	e8964b89-12a4-42d5-86d4-61221553e672
Fingerprint	9c0995199d0205a0
Analysis status	DONE
Considered CTI value	-2
Text language
Published	Sept. 22, 2024, 8:23 a.m.
Added to db	Sept. 22, 2024, 11:06 a.m.
Last updated	Nov. 17, 2024, 7:44 p.m.
Headline	Exploiting Ansible Galaxy Vulnerabilities \| HackTheBox Intuition Writeup
Title	Exploiting Ansible Galaxy Vulnerabilities \| HackTheBox Intuition Writeup
Detected Hints/Tags/Attributes	86/1/89

Source URLs

	Redirection	Url
Details	Source	https://motasemhamdan.medium.com/exploiting-ansible-galaxy-vulnerabilities-hackthebox-intuition-writeup-bef8d83a33b9?source=rss------infosec-5

URL Provider

Details	Provider	Source level domain
Details	medium.com	motasemhamdan.medium.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	168	✔	Infosec on Medium	https://medium.com/feed/tag/infosec	2024-08-30 22:08

Attributes

Details	Type	#Events	Value
Details	CVE	12	cve-2023-24329
Details	CVE	1	cve-2023-5115
Details	Domain	4127	github.com
Details	Domain	641	nvd.nist.gov
Details	Domain	258	nmap.org
Details	Domain	1	motasem-notes.net
Details	Domain	36	app.py
Details	Domain	46	datetime.now
Details	Domain	1	comprezzor.ht
Details	Domain	2	suricata.pid
Details	Domain	4	auth.py
Details	Domain	2	run-tests.sh
Details	Domain	1	crackit.py
Details	Domain	6	args.target
Details	Domain	4	tarfile.open
Details	Domain	1	create-role-archive.py
Details	Domain	1	create.py
Details	Email	2	u3jai8y71s2@ftp.local
Details	Email	1	dev_acc@comprezzor.ht
Details	Email	1	lopez@comprezzor.htb
Details	Email	1	root@comprezzor.htb
Details	File	103	test.txt
Details	File	1	report_28760.pdf
Details	File	15	urllib.url
Details	File	33	app.py
Details	File	16	zipfile.zip
Details	File	5	ftp.log
Details	File	2	private-8297.key
Details	File	2	welcome_note.pdf
Details	File	2	welcome_note.txt
Details	File	2	users.db
Details	File	1	users.sql
Details	File	4	auth.py
Details	File	1	auth_utils.py
Details	File	224	rockyou.txt
Details	File	6	eve.json
Details	File	5	4.gz
Details	File	9	fast.log
Details	File	1	1-2024040114.backup
Details	File	3	7.gz
Details	File	5	stats.log
Details	File	1	1-2024042918.backup
Details	File	2	suricata.log
Details	File	3	6.gz
Details	File	1	1-2024042213.backup
Details	File	1	inventory.ini
Details	File	4	test.json
Details	File	50	hashlib.md5
Details	File	1	crackit.py
Details	File	6	test.tar
Details	File	1	'test.tar
Details	File	1	0xdf.tar
Details	File	7	args.tar
Details	File	1	content.txt
Details	File	1	create-role-archive.py
Details	File	1	dangerous.tar
Details	File	1	target-file-to-overwrite.txt
Details	File	2	root.json
Details	File	1	create.py
Details	File	1	ed25519_gen.pub
Details	File	2	test2.tar
Details	File	1	test3.tar
Details	File	1	0xdf3.tar
Details	Github username	4	python
Details	md5	2	0feda17076d793c2ef2870d7427ad4ed
Details	sha256	2	58f6f725339ce3f69d8552a10696ddebb68b2b57d2e523c08bde868d3a756db8
Details	sha256	2	34822333d444ae0e4022f6cc679ac9d26d1d1d682c59c61cfbea29d776d589d9
Details	sha256	1	3a619e3c96fd4c5fc5e1998fd4dcb1f1403eb90c4c6409c70d7e80b9468df7df
Details	sha256	2	f0e11dc8ad21242b550cc8a3c27baaf1022b6522afaadbfa92bd612513e9b606
Details	sha256	2	a67ea5f8722e69ee99258f208dc56a1d5d631f287106003595087cf42189fc43
Details	IPv4	2	10.10.11.15
Details	IPv4	7	10.10.14.6
Details	IPv4	2	172.21.0.1
Details	IPv4	619	0.0.0.0
Details	IPv4	1441	127.0.0.1
Details	IPv4	12	127.0.0.53
Details	IPv4	2	172.21.0.2
Details	IPv4	1	172.21.0.4
Details	IPv4	1	192.168.227.229
Details	IPv4	1	192.168.227.13
Details	Url	2	https://github.com/python/cpython/issues/102153
Details	Url	1	https://nvd.nist.gov/vuln/detail/cve-2023-5115
Details	Url	132	https://nmap.org
Details	Url	2	http://comprezzor.htb
Details	Url	92	https://nmap.org/submit
Details	Url	1	https://10.10.14.6/test.txt
Details	Url	1	http://10.10.14.6/test?cookie='+document.cookie
Details	Url	1	https://motasem-notes.net
Details	Url	2	ftp://ftp_admin:u3jai8y71s2@ftp.local