Forum Discussion

Bronze III

7 months ago

Solved

Threat Research: AMPscript Analysis

This is one of those labs that I return to periodically and then abandon after half an hour whilst scratching my head........Does anyone have any pointers about how to approach this? Which fields ne...

defensive cyber

steven
7 months ago
so, base for this hack is this --> https://www.assetnote.io/resources/research/gaining-access-to-ubers-user-data-through-ampscript-evaluation
try for the message:
Message: %%[ SET @firstName = Lookup('driver_partners', 'firstname', 'partner_uuid', "5....") ]%% Hi there I'm %%=V(@firstName)=%% and I created this tool.
btw, you'll find all the nessesairy messages to solve the lab in the log. maybe you need to use cyberchef and urldecode.

netcat

Silver III

7 months ago

You have the issue that the response is always ""?
And also curl with the address or local IP just gives a HTTP 500?
And if you enter an invalid endpoint, it's still ""?
Same here.

Forum Discussion

Threat Research: AMPscript Analysis

Featured Places

Help & Support Forum

Related Content

Threat Research: Cobalt Strike C2 – SIEM Analysis - Question 4

Threat Research: Dependency Confusion Q8

Malicious Document Analysis: Dropper Analysis

Practical Malware Analysis: Static Analysis

Help with Foundational Static Analysis: 64-Bit Analysis

Recent Discussions

Elastic Data Ingest: Ep.1 – Auditbeat

Ep 7 Post Exploitation With Metasploit

Active Directory Basics: Demonstrate Your Skills

Serial Maze Support Group

Web App Hacking (Lab series): CVE-2022-2143 (iView2)