WHATINFOTECH

Cheatsheet

Nmap Cheatsheet 2020
Byadmin April 28, 2020April 28, 2020

Nmap 7.70 Usage: nmap [Scan Type(s)] [Options] {target specification} TARGET SPECIFICATION: Can pass hostnames, IP addresses, networks, etc.Ex: scanme.nmap.org, microsoft.com/24, 192.168.0.1; 10.0.0-255.1-254-iL : Input from list of hosts/networks-iR : Choose random targets–exclude : Exclude hosts/networks–excludefile : Exclude list from file HOST DISCOVERY: -sL: List Scan – simply list targets to scan-sn: Ping Scan – disable…

Read More Nmap Cheatsheet 2020
CTF | HTB | Retired

Hack the box Nibbles write up
Byadmin April 26, 2020November 12, 2020

Hack the box Nibbles write up

Read More Hack the box Nibbles write up
CTF

Hackthebox Bashed writeup
Byadmin April 26, 2020April 26, 2020

Hackthebox Bashed writeup

Read More Hackthebox Bashed writeup
CTF | HTB | Retired

Hackthebox Sense Writeup
Byadmin April 24, 2020November 12, 2020

Hackthebox Sense Writeup

Read More Hackthebox Sense Writeup
CTF | HTB | Retired

Hackthebox Magic writeup
Byadmin April 22, 2020September 1, 2020

Introduction It is a medium machine from the hack the box platform.Which has simple authentication bypass to upload a malicious file and then jumping a user followed by privilege escalation using SUID Steps involved 1-Port Scan2-Visiting website3-Authentication bypass4-Encoding php inside image5-Uploading malicious file and bypassing security check6-Uploading php reverse shell7-Getting full shell8-Getting db user creds9-Jumping…

Read More Hackthebox Magic writeup
CTF | HTB | Retired

Hackthebox Shocker Writeup
Byadmin April 21, 2020November 12, 2020

Hackthebox Shocker Writeup

Read More Hackthebox Shocker Writeup
CTF | HTB | Retired

Hackthebox Mirai writeup
Byadmin April 21, 2020November 12, 2020

Hackthebox Mirai writeup

Read More Hackthebox Mirai writeup
CTF | HTB | Retired

Hackthebox ServMon writeup
Byadmin April 19, 2020June 20, 2020

Basic Information Difficulty-EasyType -WindowsPoints-20Maker-dmw0ngUser Blood- sampriti:08 mins, 06 seconds. Root Blood-sampriti:34 mins, 10 seconds. Steps involved 1-Port Scanning2-Searching exploit for NVMS-10003-Directory Traversal(Using Burp just POC)4-FTP enumeration5-Extracting passwords Using Directory Traversal 6-SSH login into Nadine(user.tx)7-Revising FTP and Nmap enumerations8-Checking Service on port 84439-Local port forwarding through SSH10-Searching exploit for NSClient++11-Exploiting NSClient with CLI12-Getting Root.txt Commands involved…

Read More Hackthebox ServMon writeup
CTF

Passwords for the Active Hack the Box machines
Byadmin April 19, 2020June 6, 2020

New methods For linux -cat /etc/shadow Example this. root:$6$YIFGN9YscCV72BjFtx/tehbc7sQTJp09c5.:18277:0:99999:7:::So use the highlighted part as the password.So password = YIFGN9YscCV72BjFtx/ For Windows Use ntlm hash Example Administrator:500:aad3b435b51404eeaad3b435b51404ee:31d6cfe0d16ae931b73c59d7e0c::: password = 31d6cfe0d16ae931b73c59d7e0c Old methods For linux 1- cat /etc/shadow2-copy whole hash(root)root:$6$YIFGN9YscCV72BjFtx/tehbc7sQTJp09c5.:18277:0:99999:7:::3-Then find it’s MD5 sum and that’s your password for writeup For windows 1-Find root hash with hashdump.exe…

Read More Passwords for the Active Hack the Box machines
CTF | HTB | Retired

Hackthebox Bank writeup
Byadmin April 17, 2020November 12, 2020

Hackthebox Bank writeup

Read More Hackthebox Bank writeup