{"id":223,"date":"2018-12-21T01:25:25","date_gmt":"2018-12-21T01:25:25","guid":{"rendered":"https:\/\/zineausa.com\/blog\/?p=223"},"modified":"2020-02-05T19:22:06","modified_gmt":"2020-02-05T19:22:06","slug":"hackthebox-waldo-writeup","status":"publish","type":"post","link":"https:\/\/zineausa.com\/blog\/2018\/12\/hackthebox-waldo-writeup\/","title":{"rendered":"Hackthebox \u2013 Waldo Writeup"},"content":{"rendered":"\n

This is a write-up for the Waldo machine on hackthebox.eu which was retired on 12\/15\/18! <\/p>\n\n\n\n

Step 1: enumerate! Run an automated scan with this script: https:\/\/github.com\/vishalb2308\/Pentest-Enumeration-Script\/blob\/master\/EnumScript.py<\/a> or something like:<\/p>\n\n\n\n

nmap -sC -sV -oA \/tmp\/nmap1.txt -Pn 10.10.10.87<\/p>\n\n\n\n

Which should result in something like this:<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

We type in 10.10.10.87 in the browser and this shows up:<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

At this point we typically would use something like dirb or gobuster to scan for additional pages, but that’s not the way to go with this machine so we will focus on this page.<\/p>\n\n\n\n

We right click the little foxy button next to the URL bar and use the localhost:8080 proxy for all traffic, and open burpsuite.<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

We refresh the page and see that the browser is trying to pass some data through the “file” parameter via the dirRead.php file:<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

Let’s change this to file=.\/, press forward, and see what happens<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

Cool, we have some kind of local file inclusion. <\/p>\n\n\n\n

Let’s click on any of the lists that are shown, like .list, and we should see that now the browser is trying to post through a fileRead.php file:<\/p>\n\n\n\n

\"\"

<\/figcaption><\/figure>\n\n\n\n

Now.. let’s press on the “action” button and press “send to repeater”, so we can do trial and error easier (actually should have done this in the previous step too). Let’s try changing things.. like putting the following in instead:<\/p>\n\n\n\n

file=.\/fileRead.php<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

Ok so this appears to be the fileRead.php file contents, and it seems to be looking for ..\/ and ..\\ and replacing it with \/ or \\. This should be pretty simple to get around. For instance, let’s get the \/etc\/password file by sending:<\/p>\n\n\n\n

file=\u2026\/.\/\u2026\/.\/\u2026\/.\/etc\/passwd<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

So it seems we have full local file inclusion now.. with a combination of the fileRead and dirRead php files, we locate a nice RSA private key:<\/p>\n\n\n\n

file=\u2026\/.\/\u2026\/.\/\u2026\/.\/home\/nobody\/.ssh\/.monitor<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

Let’s reformat that and put it in it’s own file, like this:<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

I called mine ssh_key5 for some reason.. Let’s change the permissions of the file so we can use it<\/p>\n\n\n\n

chmod 600 ssh_key5<\/p>\n\n\n\n

Now then we can ssh in with the following command:<\/p>\n\n\n\n

ssh nobody@10.10.10.87 -i ssh_key5<\/p>\n\n\n\n

Viola, you’ve owned user:<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

Moving onto root.. If you remember, the key we got was actually for a “monitor” user, so let’s try to SSH in again while logged into nobody.<\/p>\n\n\n\n

cd .ssh
ssh monitor@localhost -i .monitor -t bash –noprofile<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

This should get us into monitor.. but you’ll see that none of the commands are working.. hmm..<\/p>\n\n\n\n

We run an export -p command to see what the path is:<\/p>\n\n\n\n

\"\"

<\/figcaption><\/figure>\n\n\n\n

Hm. that’s an odd path. Let’s set our own with:<\/p>\n\n\n\n

PATH=$PATH:\/bin:\/sbin:\/usr\/bin<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

So we run LinEnum and it comes up clean.. but there is something called linux capabilities if you are following a cheat sheet like this:<\/p>\n\n\n\n

https:\/\/vulp3cula.gitbook.io\/hackers-grimoire\/post-exploitation\/privesc-linux<\/a><\/p>\n\n\n\n

They are like suids and give certain files special privileges. The way to discover them is to use a binary called “getcap”, so let’s see if we can find that binary:<\/p>\n\n\n\n

find \/ -iname ‘getcap*’ 2>\/dev\/null<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

Turns out it’s in \/sbin, which we already mapped to PATH, nice! Let’s run this binary on all the directories with binaries, like:<\/p>\n\n\n\n

getcap -r \/usr\/bin
getcap -r \/bin
getcap -r \/sbin
<\/p>\n\n\n\n

\"\"

<\/figcaption><\/figure>\n\n\n\n

You can google cap_dac_read_search+ei but what it does is it lets that binary read pretty much any file on the disk.. so let’s try it:<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

And there you have it, you have owned Waldo! Congrats \ud83d\ude42<\/p>\n","protected":false},"excerpt":{"rendered":"

This is a write-up for the Waldo machine on hackthebox.eu which was retired on 12\/15\/18! Step 1: enumerate! Run an automated scan with this script: https:\/\/github.com\/vishalb2308\/Pentest-Enumeration-Script\/blob\/master\/EnumScript.py or something like: nmap -sC -sV -oA \/tmp\/nmap1.txt -Pn 10.10.10.87 Which should result in something like this: We type in 10.10.10.87 in the browser and this shows up: At […]<\/p>\n","protected":false},"author":1,"featured_media":578,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[5,6],"tags":[],"class_list":["post-223","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-hackthebox","category-writeups"],"yoast_head":"\nHackthebox \u2013 Waldo Writeup - Zinea InfoSec Blog<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/zineausa.com\/blog\/2018\/12\/hackthebox-waldo-writeup\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Hackthebox \u2013 Waldo Writeup - Zinea InfoSec Blog\" \/>\n<meta property=\"og:description\" content=\"This is a write-up for the Waldo machine on hackthebox.eu which was retired on 12\/15\/18! Step 1: enumerate! Run an automated scan with this script: https:\/\/github.com\/vishalb2308\/Pentest-Enumeration-Script\/blob\/master\/EnumScript.py or something like: nmap -sC -sV -oA \/tmp\/nmap1.txt -Pn 10.10.10.87 Which should result in something like this: We type in 10.10.10.87 in the browser and this shows up: At […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/zineausa.com\/blog\/2018\/12\/hackthebox-waldo-writeup\/\" \/>\n<meta property=\"og:site_name\" content=\"Zinea InfoSec Blog\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/zineausa\/\" \/>\n<meta property=\"article:published_time\" content=\"2018-12-21T01:25:25+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2020-02-05T19:22:06+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/zineausa.com\/blog\/wp-content\/uploads\/2018\/12\/image-19-1.png\" \/>\n\t<meta property=\"og:image:width\" content=\"466\" \/>\n\t<meta property=\"og:image:height\" content=\"148\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Zinea\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@ZineaLLC\" \/>\n<meta name=\"twitter:site\" content=\"@ZineaLLC\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Zinea\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/2018\\\/12\\\/hackthebox-waldo-writeup\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/2018\\\/12\\\/hackthebox-waldo-writeup\\\/\"},\"author\":{\"name\":\"Zinea\",\"@id\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/#\\\/schema\\\/person\\\/e3c58d4f0650f7fb571c01fcf836b1d0\"},\"headline\":\"Hackthebox \u2013 Waldo Writeup\",\"datePublished\":\"2018-12-21T01:25:25+00:00\",\"dateModified\":\"2020-02-05T19:22:06+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/2018\\\/12\\\/hackthebox-waldo-writeup\\\/\"},\"wordCount\":608,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/2018\\\/12\\\/hackthebox-waldo-writeup\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/12\\\/image-19-1.png\",\"articleSection\":[\"HackTheBox\",\"Writeups\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/zineausa.com\\\/blog\\\/2018\\\/12\\\/hackthebox-waldo-writeup\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/2018\\\/12\\\/hackthebox-waldo-writeup\\\/\",\"url\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/2018\\\/12\\\/hackthebox-waldo-writeup\\\/\",\"name\":\"Hackthebox \u2013 Waldo Writeup - Zinea InfoSec Blog\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/2018\\\/12\\\/hackthebox-waldo-writeup\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/2018\\\/12\\\/hackthebox-waldo-writeup\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/12\\\/image-19-1.png\",\"datePublished\":\"2018-12-21T01:25:25+00:00\",\"dateModified\":\"2020-02-05T19:22:06+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/2018\\\/12\\\/hackthebox-waldo-writeup\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/zineausa.com\\\/blog\\\/2018\\\/12\\\/hackthebox-waldo-writeup\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/2018\\\/12\\\/hackthebox-waldo-writeup\\\/#primaryimage\",\"url\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/12\\\/image-19-1.png\",\"contentUrl\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/12\\\/image-19-1.png\",\"width\":466,\"height\":148},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/2018\\\/12\\\/hackthebox-waldo-writeup\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Hackthebox \u2013 Waldo Writeup\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/\",\"name\":\"Zinea InfoSec Blog\",\"description\":\"Cyber Security Resources\",\"publisher\":{\"@id\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/#organization\",\"name\":\"Zinea LLC\",\"url\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/05\\\/zinea-square.png\",\"contentUrl\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/05\\\/zinea-square.png\",\"width\":876,\"height\":876,\"caption\":\"Zinea LLC\"},\"image\":{\"@id\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/zineausa\\\/\",\"https:\\\/\\\/x.com\\\/ZineaLLC\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/zineausa.com\\\/blog\\\/#\\\/schema\\\/person\\\/e3c58d4f0650f7fb571c01fcf836b1d0\",\"name\":\"Zinea\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/81f66095634a4c974693824dc72cd0db7c7c44910d60dda2d1bf1be275ee107d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/81f66095634a4c974693824dc72cd0db7c7c44910d60dda2d1bf1be275ee107d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/81f66095634a4c974693824dc72cd0db7c7c44910d60dda2d1bf1be275ee107d?s=96&d=mm&r=g\",\"caption\":\"Zinea\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Hackthebox \u2013 Waldo Writeup - Zinea InfoSec Blog","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/zineausa.com\/blog\/2018\/12\/hackthebox-waldo-writeup\/","og_locale":"en_US","og_type":"article","og_title":"Hackthebox \u2013 Waldo Writeup - Zinea InfoSec Blog","og_description":"This is a write-up for the Waldo machine on hackthebox.eu which was retired on 12\/15\/18! Step 1: enumerate! Run an automated scan with this script: https:\/\/github.com\/vishalb2308\/Pentest-Enumeration-Script\/blob\/master\/EnumScript.py or something like: nmap -sC -sV -oA \/tmp\/nmap1.txt -Pn 10.10.10.87 Which should result in something like this: We type in 10.10.10.87 in the browser and this shows up: At […]","og_url":"https:\/\/zineausa.com\/blog\/2018\/12\/hackthebox-waldo-writeup\/","og_site_name":"Zinea InfoSec Blog","article_publisher":"https:\/\/www.facebook.com\/zineausa\/","article_published_time":"2018-12-21T01:25:25+00:00","article_modified_time":"2020-02-05T19:22:06+00:00","og_image":[{"width":466,"height":148,"url":"https:\/\/zineausa.com\/blog\/wp-content\/uploads\/2018\/12\/image-19-1.png","type":"image\/png"}],"author":"Zinea","twitter_card":"summary_large_image","twitter_creator":"@ZineaLLC","twitter_site":"@ZineaLLC","twitter_misc":{"Written by":"Zinea","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/zineausa.com\/blog\/2018\/12\/hackthebox-waldo-writeup\/#article","isPartOf":{"@id":"https:\/\/zineausa.com\/blog\/2018\/12\/hackthebox-waldo-writeup\/"},"author":{"name":"Zinea","@id":"https:\/\/zineausa.com\/blog\/#\/schema\/person\/e3c58d4f0650f7fb571c01fcf836b1d0"},"headline":"Hackthebox \u2013 Waldo Writeup","datePublished":"2018-12-21T01:25:25+00:00","dateModified":"2020-02-05T19:22:06+00:00","mainEntityOfPage":{"@id":"https:\/\/zineausa.com\/blog\/2018\/12\/hackthebox-waldo-writeup\/"},"wordCount":608,"commentCount":0,"publisher":{"@id":"https:\/\/zineausa.com\/blog\/#organization"},"image":{"@id":"https:\/\/zineausa.com\/blog\/2018\/12\/hackthebox-waldo-writeup\/#primaryimage"},"thumbnailUrl":"https:\/\/zineausa.com\/blog\/wp-content\/uploads\/2018\/12\/image-19-1.png","articleSection":["HackTheBox","Writeups"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/zineausa.com\/blog\/2018\/12\/hackthebox-waldo-writeup\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/zineausa.com\/blog\/2018\/12\/hackthebox-waldo-writeup\/","url":"https:\/\/zineausa.com\/blog\/2018\/12\/hackthebox-waldo-writeup\/","name":"Hackthebox \u2013 Waldo Writeup - Zinea InfoSec Blog","isPartOf":{"@id":"https:\/\/zineausa.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/zineausa.com\/blog\/2018\/12\/hackthebox-waldo-writeup\/#primaryimage"},"image":{"@id":"https:\/\/zineausa.com\/blog\/2018\/12\/hackthebox-waldo-writeup\/#primaryimage"},"thumbnailUrl":"https:\/\/zineausa.com\/blog\/wp-content\/uploads\/2018\/12\/image-19-1.png","datePublished":"2018-12-21T01:25:25+00:00","dateModified":"2020-02-05T19:22:06+00:00","breadcrumb":{"@id":"https:\/\/zineausa.com\/blog\/2018\/12\/hackthebox-waldo-writeup\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/zineausa.com\/blog\/2018\/12\/hackthebox-waldo-writeup\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/zineausa.com\/blog\/2018\/12\/hackthebox-waldo-writeup\/#primaryimage","url":"https:\/\/zineausa.com\/blog\/wp-content\/uploads\/2018\/12\/image-19-1.png","contentUrl":"https:\/\/zineausa.com\/blog\/wp-content\/uploads\/2018\/12\/image-19-1.png","width":466,"height":148},{"@type":"BreadcrumbList","@id":"https:\/\/zineausa.com\/blog\/2018\/12\/hackthebox-waldo-writeup\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/zineausa.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Hackthebox \u2013 Waldo Writeup"}]},{"@type":"WebSite","@id":"https:\/\/zineausa.com\/blog\/#website","url":"https:\/\/zineausa.com\/blog\/","name":"Zinea InfoSec Blog","description":"Cyber Security Resources","publisher":{"@id":"https:\/\/zineausa.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/zineausa.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/zineausa.com\/blog\/#organization","name":"Zinea LLC","url":"https:\/\/zineausa.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/zineausa.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/zineausa.com\/blog\/wp-content\/uploads\/2018\/05\/zinea-square.png","contentUrl":"https:\/\/zineausa.com\/blog\/wp-content\/uploads\/2018\/05\/zinea-square.png","width":876,"height":876,"caption":"Zinea LLC"},"image":{"@id":"https:\/\/zineausa.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/zineausa\/","https:\/\/x.com\/ZineaLLC"]},{"@type":"Person","@id":"https:\/\/zineausa.com\/blog\/#\/schema\/person\/e3c58d4f0650f7fb571c01fcf836b1d0","name":"Zinea","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/81f66095634a4c974693824dc72cd0db7c7c44910d60dda2d1bf1be275ee107d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/81f66095634a4c974693824dc72cd0db7c7c44910d60dda2d1bf1be275ee107d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/81f66095634a4c974693824dc72cd0db7c7c44910d60dda2d1bf1be275ee107d?s=96&d=mm&r=g","caption":"Zinea"}}]}},"_links":{"self":[{"href":"https:\/\/zineausa.com\/blog\/wp-json\/wp\/v2\/posts\/223","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/zineausa.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/zineausa.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/zineausa.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/zineausa.com\/blog\/wp-json\/wp\/v2\/comments?post=223"}],"version-history":[{"count":4,"href":"https:\/\/zineausa.com\/blog\/wp-json\/wp\/v2\/posts\/223\/revisions"}],"predecessor-version":[{"id":579,"href":"https:\/\/zineausa.com\/blog\/wp-json\/wp\/v2\/posts\/223\/revisions\/579"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/zineausa.com\/blog\/wp-json\/wp\/v2\/media\/578"}],"wp:attachment":[{"href":"https:\/\/zineausa.com\/blog\/wp-json\/wp\/v2\/media?parent=223"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/zineausa.com\/blog\/wp-json\/wp\/v2\/categories?post=223"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/zineausa.com\/blog\/wp-json\/wp\/v2\/tags?post=223"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}