GitLab 11.4.7 Remote Code Execution - Real World CTF 2018

GitLab 11.4.7 Remote Code Execution - Real World CTF 2018

Channel:
United States LiveOverflow
Subscribers:
920,000
Published on ● Video Link: https://www.youtube.com/watch?v=LrLJuyAdoAg


Duration: 14:03
141,838 views
4,387

Video write-up about the Real World CTF challenge "flaglab" that involved exploiting a gitlab 1day. Actually two CVEs are combined to achieve full remote code execution:

CVE-2018-19571 (SSRF) + CVE-2018-19585 (CRLF) = RCE

flaglab - docker-compose: https://gist.github.com/LiveOverflow/8bf92dd86e5c481fb484af83c64e83b3#file-docker-compose-yml
Release: https://about.gitlab.com/2018/11/28/security-release-gitlab-11-dot-5-dot-1-released/

-=[ ❤️ Support ]=-

→ per Video: https://www.patreon.com/join/liveoverflow
→ per Month: https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w/join

-=[ 🐕 Social ]=-

→ Twitter: https://twitter.com/LiveOverflow/
→ Website: https://liveoverflow.com/
→ Subreddit: https://www.reddit.com/r/LiveOverflow/
→ Facebook: https://www.facebook.com/LiveOverflow/

#CTF #CVE



Other Videos By LiveOverflow


2019-06-23The fakeobj() Primitive: Turning an Address Leak into a Memory Corruption
2019-06-16Building an 8-Bit Computer From Scratch
2019-06-16WebKit RegExp Exploit addrof() walk-through
2019-06-09Just-in-time Compiler in JavaScriptCore (WebKit)
2019-06-02The Butterfly of JSObject
2019-05-26Hacking Browsers - Setup and Debug JavaScriptCore / WebKit
2019-05-19New Series: Getting Into Browser Exploitation - browser 0x00
2019-05-12The Origin of Script Kiddie - Hacker Etymology
2019-05-05Unpacking Redaman Malware & Basics of Self-Injection Packers - ft. OALabs
2019-04-28Business, Money, 300k Subscribers and What's Next
2019-04-21GitLab 11.4.7 Remote Code Execution - Real World CTF 2018
2019-04-14Fuzzing Browsers for weird XSS Vectors
2019-04-07How did Masato find the Google Search XSS?
2019-04-01[Live] Pen-Testing and Story Time
2019-03-31XSS on Google Search - Sanitizing HTML in The Client?
2019-03-24Weird Return-Oriented Programming Tutorial - bin 0x2A
2019-03-17Introducing Weird Machines: ROP Differently Explaining part 1 - bin 0x29
2019-03-10Ethereum Smart Contract Backdoored Using Malicious Constructor
2019-03-06[Live] GHIDRA HYPE!! - NSA Reverse Engineering Tool
2019-03-03Rediscovering the f00dbabe Firmware Update Issue - Hardware Wallet Research #7
2019-02-24Analysing a Firefox Malware browserassist.dll - FLARE-On 2018


Tags:
Live Overflow
liveoverflow
hacking tutorial
how to hack
exploit tutorial
ssrf
crlf
newline
injection
server-side
request forgery
redis
gitlab
flaglab
gitlab import
github
git
webshell
rce
code execution
ctf
capture the flag
writeup
write-up
11.4.7
redis to ssrf
shell worker
broker
exploit redis
docker
setup