In the twenty-fourth episode of our Hack The Box Starting Point series, Security Consultant, Kyle Meyer, does a complete walk-through of the Markup box. Learn how to begin your hacking journey using Kali Linux and XXE/XEE attacks. Links: Timestamps: 00:00 - Intro 00:17 - nmap scan 00:54 - webpage enumeration 02:09 - capturing request with burpsuite 05:30 - XEE exploit from Hacktricks 10:18 - finding stored secrets 11:51 - ssh from stored user key 13:26 - getting our user flag 13:50 - finding our privilege escalation 18:10 - creating a reverse shell 23:28 - persistence pays off! 24:47 - answering HtB questions 26:11 - outro #ethicalhacking #cybersecurity #pentest #hackthebox #kalilinux #markup #markupbox #hacking #penetrationtesting #hacking101 #xxe #xee #reverseshell #batch #localfileinclusion #hacktricks #abrictosecurity