It is a medium level box which has smb ports open .And on little enumeration we get creds for a user.Which in real are correct for other user.Then we get Another creds in a hidden script .Followed by the Using Dnsadmin Privileges to set our malicious .dll payload to get the root.
HackThebox Cache writeup
It involves directory enumeration followed by finding new site.Then exploiting openerm followed by getting creds with Memcached.Then a simple privilege escalation by docker
HackTheBox Admirer writeup
This machine is currently active on hackthebox wait until it gets retired or if you have owned it then you need to get the Administrator NTLM hash or the root password hash from the file /etc/shadow file
Hackthebox Obscurity writeup
It involves directory fuzzing and then exploiting a python function followed by some crypto.And root was interesting did it in two ways .
Hack the box Openadmin Writeup
Hackthebox openadmin writeup
Hack the box valentine writeup
Hack the box valentine writeup
Hack the box Nibbles write up
Hack the box Nibbles write up
Hackthebox Sense Writeup
Hackthebox Sense Writeup
Hackthebox Magic writeup
Introduction It is a medium machine from the hack the box platform.Which has simple authentication bypass to upload a malicious file and then jumping a user followed by privilege escalation using SUID Steps involved 1-Port Scan2-Visiting website3-Authentication bypass4-Encoding php inside […]
Hackthebox Shocker Writeup
Hackthebox Shocker Writeup