HackTheBox – CozyHosting
Marceli Information Gathering and Vulnerability Scanning Initial nmap shows that 3 ports are opened. Later I did another scan with all ports: I have run also nikto scan, but nothing interesting…
Privilege Escalation
HackTheBox – Optimum
This one didn't work, because I didn't run it as intended It opens elevated shell as a new process which is not visible in shell. I should redirect it to…
HackTheBox – Devel
Devel is Windows 7 box with IIS server and anonymous access to FTP
HackTheBox – Nineveh
Only http/https ports are opened
HackTheBox – Cronos
nmap shows 3 open ports: ssh, bind dns service and Apache http Default page
HackTheBox – Sunday CTF walkthrough
root, sammy, sunny - this users looks diffrent than others, probably other users have never been used I had issues with using hydra Hydra didn't work, because it takes long…
Buffer Overflow
CVE
Enumeration
Privilege Escalation
Red Team
Reverse engineering
Weak configuration
HackTheBox – October CTF walkthrough (BoF)
No hints regarding version of October CMS admin:admin I wanted to check version: There is a possibility to upload a files. File with extension .php5 is located, so I will…
HackTheBox – Poison CTF walkthrough
pwdbackup.txt looks interesting I checked it with CyberChef and didn't get any "magic" hint. Later I will decode it There is a LFI access.log is accessible I don't have permissions…
HackTheBox – Valentine CTF walkthrough
Looks like heart with bleed.. 22 ssh OpenSSH 5.9.p1 5ubuntu1.1080 http Apache 2.2.22443 https Apache 2.2.22 AES-128-CBC encrypted RSA private key I tried to crack this, but I couldn't. Vulnerabilities…
HackTheBox – Node CTF walkthrough (BoF)
Initial scan shows 2 open ports