In this video I demonstrate how I exploit another vulnerable machine from HackTheBox. For those who don't know, HTB is a platform where cybersecurity people can grow their skills in a safe and legal environment.
So, in this case we're dealing with an http file server that can be exploited in multiple ways. I choose to do it in way that's relatively easy and straightforward.
And I'm making a lot of use of the Metasploit framework, the powerful tool for active penetration testing and vulnerability assessment.
And like I say in the video, you might not want to hack this server with Metasploit if you're preparing for OSCP since in their exam, they only allow a limited use of MSF. In that case, you will try to own this server in other ways (not getting into too much detail in the video).
To stay in touch with me, follow @cristi
Cristi Vlad Self-Experimenter and Author