Information Room# Name: Sustah Profile: tryhackme.com Difficulty: Medium Description: Play a game to gain access to a vulnerable CMS. Can you beat the odds? Write-up Overview# Install tools used in
Information Room# Name: Chocolate Factory Profile: tryhackme.com Difficulty: Easy Description: A Charlie And The Chocolate Factory themed room, revisit Willy Wonka's chocolate factory! Write-up Ove
Information Room# Name: Ignite Profile: tryhackme.com Difficulty: Easy Description: A new start-up has a few issues with their web server. Write-up Overview# Install tools used in this WU on BlackA
Information Box# Name: Tabby Profile: www.hackthebox.eu Difficulty: Easy OS: Linux Points: 20 Write-up Overview# Install tools used in this WU on BlackArch Linux: 1$ pacman -S nmap ffuf curl metasp
Information Box# Name: Dyplesher Profile: www.hackthebox.eu Difficulty: Insane OS: Linux Points: 50 Write-up Overview# Install tools used in this WU on BlackArch Linux: 1$ pacman -S nmap ffuf gitto
Information Box# Name: Blunder Profile: www.hackthebox.eu Difficulty: Easy OS: Linux Points: 20 Write-up Overview# Install tools used in this WU on BlackArch Linux: 1$ pacman -S nmap ffuf exploitdb
Information Box# Name: Admirer Profile: www.hackthebox.eu Difficulty: Easy OS: Linux Points: 20 Write-up Overview# TL;DR: CTF-like box with a bit of code review for initial access (PHP) and EoP (py
Information Box# Name: Travel Profile: www.hackthebox.eu Difficulty: Hard OS: Linux Points: 40 Write-up Overview# TL;DR: Tricky RCE exploiting PHP deserialization through memcache over gopher. Then
Information Box# Name: Magic Profile: www.hackthebox.eu Difficulty: Medium OS: Linux Points: 30 Write-up Overview# TL;DR: SQLi, webshell upload with bypass, EoP via SUID tool using unsecured PATH.
Information Box# Name: Traceback Profile: www.hackthebox.eu Difficulty: Easy OS: Linux Points: 20 Write-up Overview# TL;DR: finding & abusing a PHP webshell to get system access, then EoP to an