Hackthebox thenotebook writeup
Posted inActive machines CTF Linux Boxes

Hackthebox thenotebook writeup 4.9 (16)

April 10, 2021
It is a medium level machine from hackthebox which is great for learning new skills . It starts with the abusing of jwt token which leads to admin panel and which further leads to the www-shell . Then a little enumeration we get the ssh keys for the user. For privilege escalation sudo exploitation was enough and a little google gets the work done.
hackthebox spectra writeup
Posted inActive Active machines Linux Boxes

Hackthebox Spectra writeup 4.9 (7)

April 5, 2021
It is easy machine from hackthebox. Which includes little web directory enumeration which leads to password leaks. Then with the help of msfconsole we get initial shell . After some basic enumeration gets password for a ssh user. Followed by privilege escalation by abusing sudo rights in this it was
Hackthebox armageddon writeup
Posted inActive machines CTF Linux Boxes

Hackthebox armageddon writeup 4.3 (52)

March 29, 2021
It is an easy Linux machine .Nmap revels that it is running two ports only one is 22 and other 80. Nmap also revels that it is running Drupal 7 CMS.This was the initial foothold. After that we get MySQL creds leading to creds of a valid ssh user.Using snapd for Linux privilege escalation was interesting .
Hackthebox Passage writeup
Posted inActive Active machines CTF Linux Boxes

Hackthebox Passage writeup 3.4 (5)

November 11, 2020
It is a great machine from hackthebox .The OS is Linux it includes little web enumeration which leads to explotitaion of the New management system.Further enumeration gave the creds for the user .then switching amother user with some guess work.And privilege escalation by exploiting usb-creator