HackTheBox.eu Registration Walk Through
Hackthebox is one of the best sites to test and improve your hacking skills, it’s fun to complete challenges and crack the active boxes. I recommend beginners to buy VIP which costs 10 Euros, because VIP members can have access to retired machines which are rotated every week. 20 Retired machines are available every week and they are rotated based on voting’s and other stuff. Hack the box allows users to write write-ups for the retired machines. So, you can find tons of write-ups for the retired machines. So, it helps beginners in leaning and solving the active machines with ease.
DO NOT READ, IF YOU WANT TO CRACK THE REGISTRATION PROCESS ON YOUR OWN
THIS IS MERELY CREATED FOR EDUCATIONAL & ETHICAL PURPOSE, AUTHOR IS NOT RESPONSIBLE FOR ANY ILLEGAL ACTIVITIES DONE BY THE VISITORS
THIS IS MERELY CREATED FOR EDUCATIONAL & ETHICAL PURPOSE, AUTHOR IS NOT RESPONSIBLE FOR ANY ILLEGAL ACTIVITIES DONE BY THE VISITORS
Step 1. Go to https://www.hackthebox.eu/ ; scroll down and click on “Join”
Step 2. You will be redirected to https://www.hackthebox.eu/invite ; here you need to make a way to get invite code to join hackthebox
Step 3. You need to do some reconnaissance now. First step to start a web pentest is always check the source code of all the connected files.
Step 4. When I was going through the registration process few days ago it took me few minutes to know what to do. I was just going through all the source code and found something interesting i.e., JavaScript Files.
Step 5. There are two JavaScript Files being used to run this page. Just go through those 2 javascript files.
Step 6. After going through the JS Files, There are some functions available in inviteapi.min.js file. Out of all the functions, two of them seem interesting. But we just need only one. So, let’s run ‘makeInviteCode’ function. So, let’s try calling those functions.
Step 7. Let’s move to console tab and run “makeInviteCode()” function. We got a 200 success code, which means it’s aliveJ.
Step 8. Let’s open the object our makeInviteCode() function returned. we can see the data in the object file. It also says it’s encrypted in “BASE64”.
Step 9. So, let’s quickly move to some online Base64 Decoders and decode the data. It says “In order to generate the invite code, make a POST request to /api/invite/generate”
Step 10. So, we need to make a post request to https://www.hackthebox.eu/api/invite/generate there are hell lot of ways to send a post request. Let’s go with the easier process using “POSTMAN” chrome browser widget or a windows application.
Step 11. Download and open the POSTMAN chrome extension or a widows native application. Then select “POST” and enter the address to where we need to generate a POST Request and click on “SEND”
Step 12. You can see the output of the post request below. As you can see its encoded again. When you see a single “=” or ‘==” its most likely “BASE64” Encoded.
Step 13. Copy the code from the postman output and again move to Online Base64 Decoder and decrypt it. That’s it. Now copy the decoded code and paste it into https://www.hackthebox.eu/invite and click “Sign Up”
Step 14. Congratulations!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! This is what we are after. Register and enjoy. If my post helped you give me some respect on HacktheBox. My Profile Name is "abhinavporwal”
Well, that’s it for my First Walkthrough on HackTheBox, I will come up with walkthroughs and tutorials on HackTheBox Retired Machines and Some Challenges. Hope you enjoyed this. Share this article with your friends and help them solve the challenges.
Thank You for Reading My Post, I Hope It Will Be Useful For You
Comments
Post a Comment