Information# Box# Name: ServMon Profile: www.hackthebox.eu Difficulty: Easy OS: Windows Points: 20 Write-up# Overview# TL;DR: We have to find some hints in a FTP, finds creds through a Path Travers
Information# Box# Name: Monteverde Profile: www.hackthebox.eu Difficulty: Medium OS: Windows Points: 30 Write-up# Overview# Network enumeration: SMB enumeration Network reconnaissance: SMB share &
Information# Box# Name: Nest Profile: www.hackthebox.eu Difficulty: Easy OS: Windows Points: 20 Write-up# Overview# Network Enumeration: finding TempUser: port 445 (SMB), 4386, explore SMB shares
Information# Box# Name: Resolute Profile: www.hackthebox.eu Difficulty: Medium OS: Windows Points: 30 Write-up# Overview# Network Enumeration: SMB, WinRM Network service exploitation: cme CMB pass
Intro# When doing penetration testing using a black box approach, you may find a SQL injection (SLQi) by fuzzing with common payloads. Except if there is a verbose error disclosing the original SQL qu
Intro# Basically updating ArchLinux is as easy as running pacman -Syu. But blindly running pacman -Syu everyday is not necessarily a good idea. Sometimes some updates require manual intervention, so y
Information# Box# Name: Obscurity Profile: www.hackthebox.eu Difficulty: Medium OS: Linux Points: 30 Write-up# Overview# Network Enumeration: nmap 22, 8080 Web application discovery: hints Web app
Information# Box# Name: OpenAdmin Profile: www.hackthebox.eu Difficulty: Easy OS: Linux Points: 20 Write-up# Overview# Network Enumeration: port 80, 22 Web Application Enumeration: find /ona/ Web
Information# Box# Name: Control Profile: www.hackthebox.eu Difficulty: Hard OS: Windows Points: 40 Write-up# Overview# Network Enumeration: nmap, port 80, 3306 Webapp Enumeration: admin.php, X-For
Information# Box# Name: Mango Profile: www.hackthebox.eu Difficulty: Medium OS: Linux Points: 30 Write-up# Overview# Network enumeration: 22, 80, 443 Webapp discovery: SSL cert leaks subdomain in