Unobtainium is a fictional element created for the movie "The Core" from 2003, a scientist named this material for his earth-crust-drilling machine, because it's so rare, it's almost unobtainable :) - btw love your chan ! keep up the good work.
One simple way to simulate a pod creation and print the yaml to stdout/file is: kubectl run my-pod --image=busybox --dry-run=client --output=yaml > my-pod.yaml Really nice explanation as always!
At 12:17, the reason you couldn’t grab the route.js file is because that is a file part of the express router framework, not the user’s codebase. The index.js at the bottom of the error is the same, part of express router framework. The reason you can grab index.js is because that specific index.js is part of the the user’s codebase (app/index.js).
Just failed oscp for one flag. Freaking sucks, but if I managed to get this far it's almost exclusively thanks to your videos and knowledge sharing. Thanks man
@@ippsec Ah it happens to anyone and with the fact that tons of people will comment on you, like yourself, @C. The way this guy is able to transform knowledge to others and the way he taught knowledge himself is insane. He is killing every box, every week with a little extra most of the times. A little mistake now and then is acceptable.
At last, I will get to know how to hack this machine. I was trying for few days but with no luck! EDIT: I watched the whole video. Personally, I got to creds to unobtainium app and js files but didn't know what to do next. as always great content man!
The creds I got from the PHAR file, that is basically a compressed JS of the electron app, and to move from the webapp to the dev node I used Chisel, I wrote a Python script to exploit the credential, so was kinda fast. The last part that made me lost a bunch of hours to figure out lol, but my way was the Bad Pod exploit with yaml... But was a ton of learning
Please make tutorial how to install Python 2.7 Python3.10 with pip pip2 pip3 and all other important python repositories in debian Linux smoothly without errors. Also make tutorial how to install Docker in debian Linux and install Docker tools script programs like Jok3r web framework in it smoothly without errors. 🤝💯✌🥰💚💙💜❤😘🤩😍🤝
@@bernasevinc5259 otomatik çeviri iş görebilir, değilse anlamadığın kısmı sorarsan cevaplayan olacaktır. Ayrıca zorluk derecesine göre oynatma listeleri oluşturmuş, sıra ile gidersen tekniklere aşina olursun.
Unobtainium is a fictional element created for the movie "The Core" from 2003, a scientist named this material for his earth-crust-drilling machine, because it's so rare, it's almost unobtainable :) - btw love your chan ! keep up the good work.
True. Better story than twilight. The credit card scene is top =)
It's also the material they were after in Avatar
One simple way to simulate a pod creation and print the yaml to stdout/file is:
kubectl run my-pod --image=busybox --dry-run=client --output=yaml > my-pod.yaml
Really nice explanation as always!
At 12:17, the reason you couldn’t grab the route.js file is because that is a file part of the express router framework, not the user’s codebase. The index.js at the bottom of the error is the same, part of express router framework. The reason you can grab index.js is because that specific index.js is part of the the user’s codebase (app/index.js).
Just failed oscp for one flag. Freaking sucks, but if I managed to get this far it's almost exclusively thanks to your videos and knowledge sharing. Thanks man
Better luck next time! All the best!
@@acidopcodes cheers my friend :) great learning step!
Is it harder now? I remember it was hella easy back then
Comparing tO The lab, How much The gap.??
@@thev01d12 a lot harder now a days
"There's 24 letters in the alphabet" - Ippsec, 2021
(also, it tells you .toString(32), so you should know immediately it's 32**11)
I would not do good on a game show lol... Guess the number is bigger, even more reason to not bruteforce!
@@ippsec Ah it happens to anyone and with the fact that tons of people will comment on you, like yourself, @C. The way this guy is able to transform knowledge to others and the way he taught knowledge himself is insane. He is killing every box, every week with a little extra most of the times. A little mistake now and then is acceptable.
Unobtainium is what they want to find in the movie avatar, and yes you said it right
Hey thank you very much for all your videos, it motivates me a lot to learn and of course your videos are really helpful, it is very entertaining
At last, I will get to know how to hack this machine. I was trying for few days but with no luck!
EDIT: I watched the whole video. Personally, I got to creds to unobtainium app and js files but didn't know what to do next. as always great content man!
Ippsec, I'd love to wine and dine you one day to thank you for all the resources and work you contribute to the community! You truly rock!
The creds I got from the PHAR file, that is basically a compressed JS of the electron app, and to move from the webapp to the dev node I used Chisel, I wrote a Python script to exploit the credential, so was kinda fast. The last part that made me lost a bunch of hours to figure out lol, but my way was the Bad Pod exploit with yaml... But was a ton of learning
Awesome, thank you
Why did you decide to examine the traffic with wireshark instead of burpsuite for example? Anything specific at all?
Hey ippsec do you have any courses related to cyber security?? If yes where I mean udemy plural sight??
Not really, I help out with some courses on HackTheBox Academy but mainly just what you see on my YT.
@@ippsec Is joining channel on YT available? or just patreon?
Sweet box! ❤️
superb
Wow. How does someone go from zero knowledge of hacking to this?
Please make tutorial how to install Python 2.7 Python3.10 with pip pip2 pip3 and all other important python repositories in debian Linux smoothly without errors. Also make tutorial how to install Docker in debian Linux and install Docker tools script programs like Jok3r web framework in it smoothly without errors. 🤝💯✌🥰💚💙💜❤😘🤩😍🤝
Can you add Turkish subtitles to ippsec videos please don't offend me
Better to learn English, technical isn't so hard.
P.s. There are watchers from all world, really think that Turkish is the most preferable?😁
Evgeniy Lenc yes but I don't understand the techniques in the video so I asked for Turkish subtitles
@@bernasevinc5259 otomatik çeviri iş görebilir, değilse anlamadığın kısmı sorarsan cevaplayan olacaktır. Ayrıca zorluk derecesine göre oynatma listeleri oluşturmuş, sıra ile gidersen tekniklere aşina olursun.