Cyber Mayhem Blue Team Gameplay: Process Monitoring with Snoopy (LD_Preload)

แชร์
ฝัง
  • เผยแพร่เมื่อ 24 ธ.ค. 2024

ความคิดเห็น • 59

  • @the_unknown8808
    @the_unknown8808 4 ปีที่แล้ว +51

    Whats going on youtube, this is Ippsec. This day is great.

  • @_DeProgrammer
    @_DeProgrammer 4 ปีที่แล้ว +31

    This is the best. I love watching ippsec play this game mode. I hope he does more. Learn so much in these vids. thanks htb and ippsec you guys rock!

    • @thepoop3622
      @thepoop3622 2 ปีที่แล้ว +1

      Honestly bro!!

  • @jaybachre6976
    @jaybachre6976 4 ปีที่แล้ว +26

    Finally a blue team stuff.

  • @sethadkins546
    @sethadkins546 4 ปีที่แล้ว +10

    1:12:32 plot twist: that's his plan all along, he's essentially DDoSing the box

  • @jonathanbouchard720
    @jonathanbouchard720 4 ปีที่แล้ว +6

    These videos are literally the best! We need more Cyber Mayhem with IppSec!

  • @thepointlessvideo100
    @thepointlessvideo100 4 ปีที่แล้ว +7

    "Let's do him a solid and give him a shell" - Love this Ippsec haha

  • @yeowoobi525
    @yeowoobi525 4 ปีที่แล้ว +16

    Loving this so much, but keep laughing every time he tries to rm stuff lol

  • @caliblasian
    @caliblasian 3 ปีที่แล้ว +1

    this video made me feel good inside.

  • @samlrodriguez
    @samlrodriguez ปีที่แล้ว

    The part where the attacker removes his pcap file is great: "He. He removed my pcap. That is rude... Why would do that sir. Why." 🤣

  • @hackersworld2974
    @hackersworld2974 4 ปีที่แล้ว +1

    love the terminal color combination

  • @spheleleshandu3334
    @spheleleshandu3334 4 ปีที่แล้ว +8

    When he gave him the root shell 🤣🤣🤣🤣

  • @xternl_
    @xternl_ 4 ปีที่แล้ว +2

    I love the trolling part, not-today! Hugs

  • @sethadkins546
    @sethadkins546 4 ปีที่แล้ว +8

    23:07 This dude really do be using sudo as root

  • @Nadesican
    @Nadesican 4 ปีที่แล้ว +1

    Wow. I think you trolled yourself more than you trolled your opponents!

  • @rodrigo_dmatoss
    @rodrigo_dmatoss 3 ปีที่แล้ว

    Thank you for this amazing content!

  • @niteshsurana
    @niteshsurana 3 ปีที่แล้ว

    31:55 - TROLL: Renaming NANO to VI and VI to NANO on one of the boxes for lulz
    IT HURT XD

  • @niex269
    @niex269 3 ปีที่แล้ว

    Really informational. Thanks.

  • @TheKSH991
    @TheKSH991 3 ปีที่แล้ว

    Ippsec please do more gameplay in cyber mayhem , this is very entertaining to watch

  • @gkpln3
    @gkpln3 2 ปีที่แล้ว +1

    You srand hook didn’t change the output since srand *accepts* the seed as a parameter, not returns it.
    What you did was just hijacking its call and preventing it from setting the seed.
    Great video btw!

  • @evanratliff468
    @evanratliff468 4 ปีที่แล้ว +3

    I need help i see no start button for the machines so when i nmap (sudo nmap -p- _________________) The host is down i tried to contact customer support but it said my login information is wron can some body help me with the start button (im not in retired Machines i am not a vip)

    • @user-nb6cx6vc3u
      @user-nb6cx6vc3u 4 ปีที่แล้ว +1

      go to machines, then click on the machine you want. next click spawn machine. make sure your vpn and connection stuff is all correct. furthermore, the machine could be configured to not accept ping requests.

  • @Pvnth-R
    @Pvnth-R 3 ปีที่แล้ว

    You inputted "root ALL=NOPASSWD: ALL" but it is "root ALL=(ALL:ALL) ALL". You got it mixed with sudo, haha!

  • @xMacTac
    @xMacTac 4 ปีที่แล้ว +1

    Looking out of my cardboard castle waving the blue flag

  • @tzachihazan3459
    @tzachihazan3459 4 ปีที่แล้ว +3

    i mean you can go blue team all the way and ship logs to helk it could be nice

    • @ippsec
      @ippsec 4 ปีที่แล้ว +6

      That is coming. I generally like one topic per video and this one was LD_Preload

    • @nikohegeheiskanen
      @nikohegeheiskanen 4 ปีที่แล้ว +3

      @@ippsec Man i cant wait this is great :D as much as i love the usual videos all this blue team stuff is refreshing 👍

    • @tzachihazan3459
      @tzachihazan3459 4 ปีที่แล้ว

      Nice ! cant wait for that video
      and since you like show diffrent tools look at that
      github.com/fireeye/ThreatPursuit-VM

  • @johnvardy9559
    @johnvardy9559 ปีที่แล้ว

    How i become a SOC analyst could y help me?

  • @RicondaRacing
    @RicondaRacing 3 ปีที่แล้ว

    That might not be the only script running when you copy and paste terminal commands

  • @mohamedahmed-xw8hz
    @mohamedahmed-xw8hz 4 ปีที่แล้ว +1

    I think it will be great if you can do zeek/bro and ELK stack on docker container inside your kali and ship all logs to it via filebeat/auditbeat

    • @ippsec
      @ippsec 4 ปีที่แล้ว +6

      That is coming. I generally like one topic per video and this one was LD_Preload

    • @mohamedahmed-xw8hz
      @mohamedahmed-xw8hz 4 ปีที่แล้ว

      @@ippsec glad to hear that, really appreciate you man, you are awesome, learn a lot from you

  • @karuppasamykaruppasamy4686
    @karuppasamykaruppasamy4686 3 ปีที่แล้ว

    Which website best for learn programming

  • @0xc0ffee_
    @0xc0ffee_ 4 ปีที่แล้ว

    Can't you just grab the id_rsa and permanently have access to the box? Also, can't you just remove a file that would fail the checks so the enemies would lose points?

  • @itsecurity6471
    @itsecurity6471 4 ปีที่แล้ว

    Can you use KL to do this?

  • @Flashback_Jack
    @Flashback_Jack ปีที่แล้ว

    Oo-boon-too.

  • @eseseis7251
    @eseseis7251 4 ปีที่แล้ว +4

    mv cron cron.back
    compile a backdoor.c to cron
    run cron full path,
    mv cron.back cron
    or ntp, and have your back nc listen o 123
    :) this idea can derivate to much more.
    i did it with the AV itself, so av would always skip itself. thats the problem of linux.

  • @Death_User666
    @Death_User666 10 หลายเดือนก่อน

    more blue team

  • @Drakopiou
    @Drakopiou 4 ปีที่แล้ว +1

    This is awesome, did hackthebox are the first to create this type of "battleground"? I need to complete some more machines/challenges before to jump in

    • @b3twiise853
      @b3twiise853 4 ปีที่แล้ว +3

      I hear thm has king of the hill

    • @ippsec
      @ippsec 4 ปีที่แล้ว +2

      ​@@b3twiise853 There was plenty before that. Atack and Defend is not new.... SANS NetWars has done it for years online and offline. There were some other platforms before then that I forget that tried it aswell.

    • @Drakopiou
      @Drakopiou 4 ปีที่แล้ว

      @@ippsec Thanks a lot for the explanation, you make me learn so much on your last gameplay video!

  • @armandkruger911
    @armandkruger911 4 ปีที่แล้ว

    Are you allowed to install additional software? Install fail2ban and add a regex to look for 404 inside the access.log and block his IP

    • @zenox1792
      @zenox1792 4 ปีที่แล้ว +3

      no thats against the rules smart ass

  • @d4rckh122
    @d4rckh122 4 ปีที่แล้ว

    Nice 👍😌

  • @tymekl1509
    @tymekl1509 4 ปีที่แล้ว

    gj ippsec!

  • @jkazoba
    @jkazoba 4 ปีที่แล้ว

    "Let's see"

  • @fm0x1
    @fm0x1 ปีที่แล้ว +1

    Thanks You #HackTheBox !!!

  • @thinkingonyx847
    @thinkingonyx847 ปีที่แล้ว

    I think I remember we got destroyed this game 😅

  • @GamerHacker-wc8rs
    @GamerHacker-wc8rs 10 หลายเดือนก่อน

    I feel so stupid

  • @eseseis7251
    @eseseis7251 4 ปีที่แล้ว

    not.today or mv or echo > file.php
    or chown, or chattr

  • @jorgevilla6523
    @jorgevilla6523 4 ปีที่แล้ว

    lol so troll you gave him root hahaha

  • @b3twiise853
    @b3twiise853 4 ปีที่แล้ว

    Not-today lol

  • @ankeshkumarno1
    @ankeshkumarno1 3 ปีที่แล้ว

    Battleground mobile India hack please