Bolt
Bolt
Bolt 384
Bolt
RETIRED MACHINE

Bolt

Bolt - Linux Linux
Bolt - Medium Medium

4.5

MACHINE RATING

3314

USER OWNS

3008

SYSTEM OWNS

25/09/2021

RELEASED
Created by ctrlzero & TheCyberGeek

Machine Synopsis

Bolt is a medium difficulty Linux machine featuring a custom web application providing a docker image file having multiple layers with deleted files. Enumerating deleted database file reveals credentials for an application revealing hints to demo site. Further enumeration of the docker image reveals an invitation token which allows registration to the site. The site is found to be vulnerable to Server Side Template Injection. Foothold can be gained by exploiting the SSTI vulnerability. Enumerating passbolt configuration reveals database credentials that can be used to achieve lateral movement. Root password can be obtained by exploiting the passbolt server.

Machine Matrix

Ready to start your
hacking journey?