Absolutely impressed by this incredibly realistic machine! I'm thrilled to see that HTB has taken a significant leap forward in the realm of cybersecurity training platforms
I wanted to take a moment to express my deep appreciation for the incredible content you've been creating. I have over 5 years watching your content. Your videos have been an invaluable resource for me and countless others in the cybersecurity community. Your dedication and expertise are truly inspiring, and I'm in awe of the amazing job you've been doing. I have a suggestion that I believe would be incredibly beneficial to the community. If you could consider making two videos, one focused on "Privilege Escalation Methodology for Windows" and the other on "Privilege Escalation Methodology for Linux," where you explain the concepts and techniques just like you do in all your videos, I am confident that these videos would become an instant hit. With your guidance, I can envision these videos receiving well over 500,000 views in the first month alone. Your ability to motivate and educate is unparalleled, and I still find myself inspired by your work even after 5 years. Your impact on the field of hacking and cybersecurity is akin to that of an iconic figure, and I genuinely believe you are the epitome of excellence in this domain. I hope my comment serves as a testament to the tremendous influence you have had on aspiring cybersecurity professionals like myself. Your contributions have been nothing short of revolutionary, and I wholeheartedly thank you for sharing your knowledge and expertise with the community. I have faith that you'll continue to achieve great things, and I'm eagerly looking forward to any future content you produce. May you be blessed with even more success and recognition as you continue to make a positive impact on the cybersecurity world. again THANK YOU SOOOO MUCH MAN!!!. I have no words to describe how thankful I feel with you. a have learned a ton because of you. this comment comes from my hard sincerely LORD GUCCIF3R.
Regex matching the CSRF-Token (or any other value between quotes): Instead of hard-coding the text behind quotes, I like to use "([^"]*)" [^"] matches every char that is NOT " (^ negates the character group, [^a-z] is "everything but a-z"). In plain words: Capture everything after dblquote up to the next dblquote.
Solved the box by using the build in js-function of the page getContent like this, then you can write the js-payload in the clipboard note itself and no need for fiddling with the cors header, but was interesting to see how other people solved this box :) aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
