This is a write-up of the TryHackMe machine Brainstorm featuring a buffer overflow. Enumeration The usual Nmap scan comes back saying the host is down, let’s use the following command to scan the host assuming it is up: Kali> nmap -Pn 10.10.166.128 Host discovery disabled (-Pn). All addresses…

This spider man themed machine is part of the Offensive Security learning path on tryhackme.com; follow along as we exploit Joomla CMS with SQL Injection, crack passwords with John the ripper, and take advantage of yum for privilege escalation! Enumeration Firstly, lets run an Nmap scan with the following command: >nmap…

This machine was fun to work through as it had some ‘Capture the Flag’ Esq attributes. Steganalysis is something that I have always wanted to play around with, and this box was the perfect excuse to dedicate some time to explore this interesting technique. …

In this writeup, we will explore RSA Cracking, Cipher Breaking, and WordPress exploitation in a ‘real-world’ capture the flag lab machine: Brainfuck on HacktheBox.eu. This is an Insane level Linux machine. Hack the box is an online host of virtual machines used to safely practice hacking and penetration testing methods…

A Hack the Box machine rated Medium difficulty running Linux. Starting out we will run our usual Nmap scan to get a sense of what is running on this box. kali@kali:~/Documents/htb/cronos$ nmap -sC -sV -oA nmap 10.10.10.13 Our output is as follows: Starting Nmap 7.80 ( https://nmap.org ) at 2020-08-24…

This walkthrough will be of the Windows box Bastard, focusing on post exploit privilege escalation. Initial Scans Let’s kick it off with our go-to Nmap scan. Using -sC for default scripts and -sV to enumerate versions, and finally, -oA to output all formats. # Nmap 7.80 scan initiated Sun Aug 16 20:40:16…

Enumeration We will start this box with the usual Nmap scan, using -sC for default scripts and -sV for enumerating versions and -oA to output all formats. Starting Nmap 7.80 ( https://nmap.org ) at 2020-08-07 15:02 EDT Nmap scan report for 10.10.10.7 Host is up (0.041s latency). Not shown: 988 closed ports PORT…

This was a pretty fun box and I am excited to share this writeup with you. As always we start with a Nmap scan using -sC for default scripts and -sV to enumerate versions. Starting Nmap 7.80 ( https://nmap.org ) at 2020-08-04 12:49 EDT Nmap scan report for 10.10.10.75 Host is up…

A walkthrough of Hack the Box Machine Optimum using Powershell. The initial Nmap scan reveals only port 80 open: Starting Nmap 7.80 ( https://nmap.org ) at 2020-08-02 14:00 EDT Nmap scan report for 10.10.10.8 Host is up (0.039s latency). Not shown: 999 filtered ports PORT STATE SERVICE VERSION 80/tcp open http…