This post is a follow up to my previous post that explains how to set up a Single Node k0s in a LXC Ubuntu Container. I strongly recommend reading/referencing that post to understand the reason beh…| Technical Scratchpad
Tilde Expansion (Bash Reference Manual)| www.gnu.org
Or how I learned to love BlockNote, Tiptap and ProseMirror OT sync.| stack.convex.dev
Taking a long time to change the ID3 tags on a few MP3 files.| leancrew.com
CozyHosting is a web hosting company with a website running on Java Spring Boot. I’ll find a Spring Boot Actuator path that leaks the session id of a logged in user, and use that to get access to the site. Once there, I’ll find command injection in a admin feature to get a foothold. I’ll pull database creds from the Java Jar file and use them to get the admin’s hash on the website from Postgres, which is also the user’s password on the box. From there, I’ll abuse sudo ssh with the...| 0xdf hacks stuff
Bun's cross-platform shell-scripting API makes shell scripting with JavaScript fun| bun.sh
The Set Builtin (Bash Reference Manual)| www.gnu.org