Written by students who passed Immediately available after payment Read online or as PDF Wrong document? Swap it for free 4.6 TrustPilot
logo-home
Exam (elaborations)

Hack The Box Eloquia — Writeup

Rating
1.0
(1)
Sold
1
Pages
5
Grade
A+
Uploaded on
07-03-2026
Written in
2025/2026

Hack The Box Eloquia — Writeup HTB Eloquia — Writeup Hosts Configuration Add the following entries to /etc/hosts: 10.10.11.99 Initial Access — OAuth CSRF Admin Takeover Vulnerability Overview - Issue: OAuth 2.0 implementation missing state parameter - Impact: CSRF allowing OAuth account linking - Result: Admin account takeover without password Attack Flow Summary 1. Attacker logs into their own Qooqle account 2. OAuth flow is initiated without state validation 3. A malicious OAuth callback URL is generated 4. Admin visits the crafted URL while logged into Eloquia 5. Attacker’s Qooqle account is linked to the admin Eloquia account 6. Attacker logs in as admin via OAuth SSO Exploit Execution Run the following exploit script to generate the malicious OAuth CSRF URL: python3 oauth_csrf_admin_ The script logs into the attacker’s Qooqle account, generates the OAuth callback, and outputs a malicious CSRF URL to be delivered to an admin user. Admin Credentials Obtained Username: admin Password:

Show more Read less
Institution
Hack The Box Eloquia
Course
Hack The Box Eloquia

Content preview

downloaded from




Scholarfriends




https://scholarfriends.com


Downloaded by: | https://scholarfriends.com/singlePaper/620363/hack-the-box-eloquia-writeup
Distribution of this document is illegal.

, HTB Eloquia — Writeup
Hosts Configuration
Add the following entries to /etc/hosts:
10.10.11.99 eloquia.htb qooqle.htb



Initial Access — OAuth CSRF Admin Takeover
Vulnerability Overview
- Issue: OAuth 2.0 implementation missing state parameter
- Impact: CSRF allowing OAuth account linking
- Result: Admin account takeover without password



Attack Flow Summary
1. Attacker logs into their own Qooqle account
2. OAuth flow is initiated without state validation
3. A malicious OAuth callback URL is generated
4. Admin visits the crafted URL while logged into Eloquia
5. Attacker’s Qooqle account is linked to the admin Eloquia account
6. Attacker logs in as admin via OAuth SSO



Exploit Execution
Run the following exploit script to generate the malicious OAuth CSRF URL:
python3 oauth_csrf_admin_takeover.py

The script logs into the attacker’s Qooqle account, generates the OAuth callback, and outputs a
malicious CSRF URL to be delivered to an admin user.



Admin Credentials Obtained
Username: admin
Password: MyEl0qu!
@Admin




This study source was downloaded by 100000904123021 from CourseHero.com on 03-02-2026 01:47:51 GMT -06:00


https://www.coursehero.com/file/253802789/eloquia-writeupdocx/

Written for

Institution
Hack The Box Eloquia
Course
Hack The Box Eloquia

Document information

Uploaded on
March 7, 2026
Number of pages
5
Written in
2025/2026
Type
Exam (elaborations)
Contains
Questions & answers
$12.55
Get access to the full document:

Wrong document? Swap it for free Within 14 days of purchase and before downloading, you can choose a different document. You can simply spend the amount again.
Written by students who passed
Immediately available after payment
Read online or as PDF

Reviews from verified buyers

Showing all reviews
2 months ago

Fake. It does not contain anything useful

1.0

1 reviews

5
0
4
0
3
0
2
0
1
1
Trustworthy reviews on Stuvia

All reviews are made by real Stuvia users after verified purchases.

Get to know the seller

Seller avatar
Reputation scores are based on the amount of documents a seller has sold for a fee and the reviews they have received for those documents. There are three levels: Bronze, Silver and Gold. The better the reputation, the more your can rely on the quality of the sellers work.
AcademiContent Aalborg University
View profile
Follow You need to be logged in order to follow users or courses
Sold
3185
Member since
7 year
Number of followers
2133
Documents
1209
Last sold
5 days ago

4.0

400 reviews

5
212
4
86
3
39
2
19
1
44

Why students choose Stuvia

Created by fellow students, verified by reviews

Quality you can trust: written by students who passed their tests and reviewed by others who've used these notes.

Didn't get what you expected? Choose another document

No worries! You can instantly pick a different document that better fits what you're looking for.

Pay as you like, start learning right away

No subscription, no commitments. Pay the way you're used to via credit card and download your PDF document instantly.

Student with book image

“Bought, downloaded, and aced it. It really can be that simple.”

Alisha Student

Working on your references?

Create accurate citations in APA, MLA and Harvard with our free citation generator.

Working on your references?

Frequently asked questions