Category Listing for 'Hackthebox'

Htb Forest Windows [ hackthebox ]

TL;DR
Windows, DC, Active-Directory, pass-the-hash, dcsync, enum4linux

Timelapse Windows [ hackthebox ]


windows, laps, winPEASx64_ofs.exe, evil-winrm, pfx2john, pfx

Solidstate linux [ hackthebox ]

Powning a James administration with default credentials
linux, CVE-2015-7611, james, james-server, pop3, oscp-like

Devel [ hackthebox ]

A windows 7 machine vulnerable to JuicyPotato (for x86 architecture)
windows, IIS7, IIS, x86, seImpersonatePrivilege, JuicyPotatox86

Blue [ hackthebox ]

Eternal Blue without metasploit
windows, windows-7, x64, blue, MS17-010, eternal-blue, nasm, smb, impacket

Faculty Linux [ hackthebox ]


linux, run-command-as, sudo-run-command-as

Resolute windows [ hackthebox ]

Abusing DNSAdmins privilege for escalation in Active Directory
windows, dnscmd, dnsadmins, DC, active-directory

Return windows [ hackthebox ]

Using SeBackupPrivilege to read files
windows, SeBackupPrivilege, printer

Updown Linux [ hackthebox ]


linux, burp, headers-modification

Optimum windows [ hackthebox ]

RCE in HttpFileServer to then use MS16-032 for priv esc
windows, Invoke-PowerShellTcp.ps1, ms16_032_intrd_mod.ps1, ms16_032, Invoke, MS16-032, rejetto, HttpFileServer, ms16-098

Granny Windows [ hackthebox ]

Webdav allow us to upload a reverse shell and churrasco help us for the priv esc
windows, churrasco, webdav, cadaver, davtest, x86, windows-2003

Paper Linux [ hackthebox ]


linux

Trick linux [ hackthebox ]

Abusing fail2ban to escalate privileges
linux, nslookup, dns, lfi, fail2ban, dotdotpwn

Mirai linux [ hackthebox ]

Brute-force ssh into pi-hole
linux, pi-hole, ssh-brute-force

Enterprise linux [ hackthebox ]

Attacking joomla/wordpress then escaping Docker
linux, wordpress-4.8.1, wordpress, cmsmap, wpscan, hydra, ltrace, joomla

Swagshop linux [ hackthebox ]

Exploiting a Magento shop
linux, magescan, magento, magento-1.9, php

Friendzone linux [ hackthebox ]

Snooping into processes without need for root permissions to then exploit python misconfiguration
linux, dig, host, python, pspy

Noter Linux [ hackthebox ]


linux, Werkzeug, ffuf, ffuf-post, udf, user-defined-function, python, python-jwt, flask-unsign, flask, raptor_udf2

Goodgames [ hackthebox ]

Escape the Docker container abusing SUID
linux, htb, Werkzeug, hackthebox, easy, Web, SQL, SQLi, Weak, Password, SSTI, Python, Docker, template, injection, template-injection, tpli, docker, docker-escape, suid, bash-suid

Late linux [ hackthebox ]

SSTI into the machine then abusing a misconfigured ssh script
linux, flask, SSTI, server-side-template-injection, template, injection, template-injection

Htb Heist Windows [ hackthebox ]

Dumping processes to then retrieve logged passwords
windows, rid-brute, crackmapexec, sysinternal, procdump, grep, firefox

Postman linux [ hackthebox ]

Redis misconfiguration allowing SSH key creation
linux, webmin, webmin-1.910, 1910, redis, redis-409, redis-ssh, ssh2john

Haircut linux [ hackthebox ]

Using curl to write files then Screen for Privilege escalation
linux, strpos, strpos-bypass, screen, screen-4.5, curl, command, injection

Opensource [ hackthebox ]


linux

Cronos linux [ hackthebox ]

In the server viabasic attacks to then compromise a laravel application
linux, weevely, command-injection, laravel, php, domain-enumeration, gobuster-dns, gobuster-vhost, sqli

Devoops linux [ hackthebox ]

Exploiting XXE vulnerability on Gunicorn server
linux, xml, xxe, git, XML-External-Entity

Extension Linux [ hackthebox ]


linux, docker, docker-escape, gitea, gitea-1.15, webapp, code-review

Redpanda linux [ hackthebox ]


linux, ssti, server-side-template-injection, template, injection, template-injection, spring

Htb Knife Linux [ hackthebox ]

Exploiting a vulnerability for PHP/8.1.0-dev
linux

Htb Valentine Linux [ hackthebox ]

Exploit heartbleed vulnerability
linux, heartbleed, ssl, fdupes