Keeper - HackTheBox

Keeper is a machine that uses a well-known ticket web application called Request Tracker with default credentials. Using the credentials we get access as root and find a ticket with information made by a user that has the SSH password in his description. Those credentials give us access to their SSH session. In there, we get a keepass dump and database. We use a vulnerability of keepass that allows us to get parts of the master key from a dump and with a quick search we get all the master key. In the database, we have a PuTTY-User-Key-File that we need to translate to an SSH private key to login in SSH as root.

September 28, 2023 · 4 min