EasterBunny - HackTheBox Web Challenge (Easy) Walkthrough

Walk through of the recently retired HackTheBox web challenge "EasterBunny". https://app.hackthebox.com/challenges/easterbunny ▬ Contents of this video ▬▬▬▬▬▬▬▬▬▬ 00:00 - Intro 00:27 - Looking at Web Page 01:24 - Looking at Source Code 04:03 - What is a Reverse Proxy? 06:30 - More Source Code 13:25 - Looking for the Vulnerability 18:15 - Controlling Base HTML Tag 22:52 - Hacking Ourselves 27:32 - Web Cache Poisoning 35:16 - X-Forwarded-Host Header 40:25 - Pwning the EasterBunny ▬ Self-Promotion ▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬ Twitter: https://twitter.com/Hilb3r7 GitHub: https://github.com/Hilb3r7 Web: https://hilb3r7.github.io/