Name: Road to CREST/CRT: HTB BountyHunter
Start: 2024-06-29T19:00:00+07:00
End: 2024-06-29T21:00:00+07:00

It's been a long time since our last meeting, so we’re excited to reconnect with you. In this session, we will prepare for the CREST Certified Tester (CRT) exam by solving Hack The Box (HTB) machines in the CREST/CRT tracks.

One of the machines we will tackle is BountyHunter, which features a straightforward XXE vulnerability in a webpage that allows access to files on the host. This vulnerability can be exploited to retrieve user information and a password in a PHP script, which can then be used to gain SSH access to the host. For privilege escalation, we'll explore a ticket validation script running as root that is susceptible to Python eval injection.

Join us to sharpen your skills and advance your knowledge in preparation for the CREST/CRT exam.

Azka Maarij

Hack The Box Meetup: Indonesia

Hack The Box

Technology

White Hat Hacking

Cybersecurity

Computer Security

Cloud Security

Ethical Hacking

Software Security

Application Security

Information Security

Network Security

Web Security

Web Application Security

Highlander

Maulana Ajah

Rizal Nur

Ellianto Sarono Putro

Antonio Komang Yudistira

Rudi widiyanto 

**Speaker Bio: Azka Ainul Maarij**

Azka Ainul Maarij is a seasoned Security Consultant at Vantage Point Security. He holds several prestigious certifications, including OSCP, CPSA, CRT, CAP, CBP, and CXMAP. With a strong educational background in Cyber/Computer, Azka has built a robust career in cybersecurity. His expertise spans penetration testing, vulnerability assessments, and advanced security strategies. Azka has a proven track record of success in the field, having participated in various CTF challenges and contributed to the security community through talks and workshops.

Azka Ainul Maarij

Road to CREST/CRT: HTB BountyHunter

Online event

Share this event

Road to CREST/CRT: HTB BountyHunter

Details