miscmedium

Chrono Mind

hackthebox

Task: Extract a flag from an AI/LLM application with a code execution endpoint protected by a secret key. Solution: Use path traversal in the topic parameter to load config.py into the AI context, prompt inject the LLM to reveal the copilot_key, then use the key to execute arbitrary code via the copilot/complete_and_run endpoint.

$ ls tags/ techniques/

rce lfi path_traversal llm ai_security prompt_injection copilot

path_traversalprompt_injectionarbitrary_code_executionsecret_extraction

Analysis

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

$ python3 exploit.py --target 192.168.1.1 --port 8080
[*] Connecting to target...
[+] Shell obtained!

Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.

🔒

Permission denied (requires tier.pro)

Sign in to access full writeups

Create a free account with GitHub, then upgrade to Pro.

$ssh [email protected]