beginners
Exploiting SSTI - Doctor @ Hack The Box
Doctor is a retired easy machine from Hack The Box that involves employing Server Side Template Injection in order to exploit a web application and establish a foothold on the box. From there, it is possible to exploit a vulnerability in the Splunk Universal Forwarder to gain root access. This