Hack The Box… Blunder – Hack The Box 18 Oct 2020 Overall Summary This Hack The Box machine by finding a Bludit login page and its version to take advantage of a vulnerability that bypasses IP blocking when attempting to…
Hack The Box… Bashed – Hack The Box 23 Jul 202023 Jul 2020 Overall Summary Bashed is a Linux machine from Hack The Box that can be exploited through a web shell that is already hosted on the machine and gaining a reverse…
Linux… DC: 9 – Vulnhub (Without sqlmap) 10 Jul 202017 Jul 2020 Overall Summary This Vulnhub image is a machine that I considered very fun to go through as it allowed me to better understand SQL injection and yet another interesting privilege…
Hack The Box… Jeeves – Hack The Box 29 Jun 202010 Jul 2020 Overall Summary Jeeves is a Windows machine from Hack The box that can be exploited through Jenkins by running a groovy reverse shell. Privilege escalation requires finding a kdbx file…
Linux… SkyTower: 1 – Vulnhub 29 Jun 2020 Overall Summary SkyTower 1 is a machine from Vulnhub to practice SQL injection to bypass a login page and to get familiar using a proxy. When getting a low privilege…
Linux… HackInOS: 1 24 Jun 202024 Jun 2020 Overall Summary HackInOS 1 is a fun machine from Vulnhub that can be very easy to get a foothold for exploitation but the fun part consists in looking at a…
Hack The Box… Bastard – Hack The Box 23 Jun 202024 Jun 2020 Overall Summary Bastard is a Windows machine from Hack the Box that is vulnerable to RCE through Drupal and privilege escalation can be accomplished by a kernel exploit because of…
Linux… DerpNStink: 1 21 Jun 202024 Jun 2020 Overall Summary DerpNStink is a Vulnhub machine that can be exploited by first discovering a WordPress site that has a vulnerable plugin called "Slideshow" which allows arbitrary file upload. Privilege…
Linux… DC: 6 – Vulnhub 17 Jun 202024 Jun 2020 Overall Summary DC: 6 is a Vulnhub machine that can be found at https://www.vulnhub.com/entry/dc-6,315/ and the exploitation process consists in discovering a WordPress site to then enumerate it to obtain…
TryHackMe… Brainstorm – TryHackme 16 Jun 202024 Jun 2020 A Note To Take In Consideration In this walk-through I'll be using a Windows 10 virtual machine to test the buffer overflow script. This post doesn't go over the installation…