HackTheBox Cyber Apocalypse 2024: Web Challenge Walkthroughs

Video walkthrough for the first 7 web challenges from @HackTheBox Cyber Apocalypse CTF 2024 (Hacker Royale); Flag Command, TimeKORP, KORP Terminal, Labyrinth Linguist, Locktalk, SerialFlow and Testimonial. The challenges involved API testing, command injection, SQL injection (SQLi), server-side template injection (SSTI), 403 bypass (haproxy), JWT attacks, Memcached injection, python pickle deserialization, gRPC hacking and path traversal! Write-ups/tutorials aimed at beginners - Hope you enjoy 🙂 #HackTheBox #HTB #CyberApocalypse #CyberApocalypse24 #CTF #CaptureTheFlag #Pentesting #OffSec #WebSec #AppSec Write-ups: https://book.cryptocat.me/ctf-writeups/2024/cyber_apocalypse_24 Looking for more HTB CA '24 walkthroughs? Check out @SloppyJoePirates video: https://www.youtube.com/watch?v=EGItzKCxTdQ Sign up for HackTheBox: https://hacktheboxltd.sjv.io/xk75Yk ↢HackTheBox Cyber Apocalypse: Hacker Royale↣ https://ctf.hackthebox.com/event/details/cyber-apocalypse-2024-hacker-royale-1386 https://ctftime.org/event/2255 https://discord.com/hackthebox 👷‍♂️Resources🛠 https://cryptocat.me/resources ↢Chapters↣ 0:00 Start 0:19 Flag Command 1:39 TimeKORP 6:15 KORP Terminal 9:46 Labyrinth Linguist 14:52 Locktalk 25:30 SerialFlow 33:36 Testimonial 43:00 End