Official Blazorized Discussion

Th35t0rm · June 30, 2024, 2:10pm

any hint for root ?

reothor · June 30, 2024, 2:14pm

So, I generated a token for the other site but it doesn’t want it (I know it works as I can call the normal API with it) - am I barking up the wrong fire hydrant?

Gordin · June 30, 2024, 2:55pm

The BAPP extension truly is the key to enlightenment if you are stuck trying to convince the site to give you privileges.

bsnun · June 30, 2024, 2:59pm

Right!? I was accompanying it and was like… “This isn’t right… user in 30 min… might be a platform issue”

liram · June 30, 2024, 7:51pm

Stuck on nu_**** user, any nudges on privesc?

jmarroyave · June 30, 2024, 8:07pm

I have the token and works for the api, but when i send it as a header to the admin returns an error, could someone give me a hint how to find the cookie or local storage variable name?

priler · June 30, 2024, 8:15pm

I don’t understand how to create valid jwt. It requires secret, isn’t it? How I can change payload if I have no secret?
Also how could you know local storage key that admin panel needs? I researched it’s js to find it but have no results. Tried to decompile dll but idk how to do it better, I’m using linux so running with ‘strings’ command, I don’t want to install all this .net sdk.

harrynorthover · June 30, 2024, 9:20pm

As mentioned earlier by someone else: vscode + ilspy-vscode plugin. Then download and look at DLLs with a name “Blazorized.*”

priler · June 30, 2024, 9:59pm

Ok, I’ve got token values to generate but I still can’t find local storage key to use. I tried all default values such “access_token” etc. but admin’s js still does not includes it to request headers.

bsnun · June 30, 2024, 10:01pm

Try the obvious keys.

You can Fuzz it but a simple manual spray should cover.

c3llkn1ght · June 30, 2024, 11:23pm

its a windows box, look at the ports that are open and think about what services are vital to specifically windows environments. I believe someone has already mentioned the service.

c3llkn1ght · June 30, 2024, 11:25pm

you know the variable name

priler · June 30, 2024, 11:42pm

Yeah but I though we need admin panel access to use some form xss on mssql mb.
I get stuck there to be honest -_-

jmarroyave · June 30, 2024, 11:50pm

Yes, but I forgot that was case sensitive, thanks

FroggieDrinks · July 1, 2024, 12:43am

Pc Rage GIFs - Find & Share on GIPHY

This is me this whole box. LOL

bsnun · July 1, 2024, 12:47am

JimShoes · July 1, 2024, 12:50am

Feel free to DM me if you’re still trying to figure out what to do from nu account.

SkilledLeaf · July 1, 2024, 5:26am

Anyone got any hints how to move from user NU****, nothing seems to be working for me

zagnox · July 1, 2024, 8:31am

I generated the jwt but how am i supposed to use it? I supplied it in the header and it does not log me in to admin dashboard? Can someone give me a hint plz?

Abdul_99 · July 1, 2024, 9:52am

how to extract dll files ?