Oh My WebServer TryHackMe Machine Writeup and Walkthrough

This page summarizes the projects mentioned and recommended in the original post on dev.to

WorkOS
Our great sponsors
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • CVE-2021-41773

    Apache2 2.4.49 - LFI & RCE Exploit - CVE-2021-41773 (by thehackersbrain)

    • After studing, what was the flaw a written a custom exploit for this specific CVE which will give us RCE on the server, you can find that exploit here.

  • CVE-2021-38647

    CVE-2021-38647 - POC to exploit unauthenticated RCE #OMIGOD (by AlteredSecurity)

    • After enumerating the host machine's services for a while, found that WinRM service, commonly on ports 5985, 5986 is vulnerable with the CVE-2021-38647, exploit can be found here. This exploit is against the OHMIGOD service, commonly runnnig on ports as 5986

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

    WorkOS logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts