Machine IP: 10.10.10.68 DATE : 13/06/2021 Reconocimiento Primero hacemos un escaneo de puertos para saber cuales están abiertos y conocer sus servicios correspondientes. Nmap Como vemos solo el puerto 80 está abierto, así que investigaremos en la web para ver si encontramos algo interesante En la web no encontré nada :,c, pero phpbash me da una pista. Como vemos es un frontend normal,pero el nombre php bash es algo sospechoso al parecer no muestra directorios, por eso le hacemos un brute force para enumerar los directorios con gobuster. ...

Some acronyms: JOSE: Javascript Object Signing and Encryption The name of the working group JWT: JSON Web TOKEN JWE: JSON Web Encryption JWS: JSON Web Signature JWK: JSON Web Key JWA: JSON Web Algorithm “Encryption gives you confidentiality but signature gives you integrity” JWT has 3 parts separated by a dot: Header (base 64 url encoded without padding(no ‘/’, ‘+’, ‘=’)) Contain an algorithm “alg” attribute to tell how the token was signed Support a lot of different algorithms (HS256, HS384, HS512, None, …) Payload (base 64 url encoded without padding no ‘/’, ‘+’, ‘=’)) May contain anything Use registered claims “iss”: issuer “sub”: subject “aud”: audience “jti”: claim id “exp”: expiration time “nbf”: not before “iat”: issued at Signature (base 64 encoded) The JWT Format: Algorithms ...

“With Docker, developers can build any app in any language using any toolchain. “Dockerized” apps are completely portable and can run anywhere - colleagues” OS X and Windows laptops, QA servers running Ubuntu in the cloud, and production data center VMs running Red Hat. Basic Commands Verified cli can talk to engine docker version Most config values of engine docker info docker ps #see al docker running docker top <name> #see info about the container Docker command line structure ...