Privilege Escalation

Enumeration Privilege Escalation Red Team XXE

HackTheBox – Markup CTF walkthrough

Marceli 21 February 2022 No Comments

After going back to login page, I tried a few default credentials and one trivial combination worked. We are logged as "Customer" No hints from cyberchef Nothing interesting about technologies…

Enumeration Local file inclusion Privilege Escalation Red Team

HackTheBox – Included CTF walkthrough

Marceli 19 February 2022 No Comments

After going to http site, user is being redirected to: So I decided to try /etc/passwd Host is vulnerable to local file inclusion There are users related to tftp service…

Hashes Injection Insecure Design Privilege Escalation Red Team Weak configuration

HackTheBox – Vaccine CTF walkthrough

Marceli 12 February 2022 No Comments

Initial scan of Vaccine shown 3 open ports.

Enumeration Injection Insecure Design Privilege Escalation Red Team

HackTheBox – Oopsie CTF walkthrough

Marceli 11 February 2022 No Comments

Initial scan of “Oopsie”:

Enumeration Privilege Escalation Red Team Weak configuration

HackTheBox – Nibbles CTF walkthrough

Marceli 9 February 2022 No Comments

Initial scan:

Enumeration Privilege Escalation Red Team

TryHackMe – Retro CTF walkthrough

Marceli 15 July 2021 No Comments

Retro is typical blackbox CTF. Initial nmap scan shows 2 open ports:

Buffer Overflow Enumeration Privilege Escalation Red Team Reverse engineering

TryHackMe – Brainpan 1 CTF walkthrough

Marceli 14 July 2021 No Comments

This box is quite similar to Brainstorm which i did previously. Initial scan shows 2 open tcp ports: 9999 and 10000

Injection Privilege Escalation Red Team

HackTheBox – CozyHosting

Resilient Organization

Next-Gen Firewall (NGFW) – selection & initial deployment

Active Directory Red Team

HackTheBox – Active

Active Directory Red Team

TryHackMe – Enumerating Active Directory