HTB

A collection of 19 posts

HackTheBox Writeup: Jarvis

Jarvis was a medium rated box that involved SQL injection for the initial foothold followed by bash manipulation and service abuse to gain root. Nmap scan: I checked out 64999 first: There didn't

HackTheBox Writeup: Haystack

Haystack was an easy rated Linux box that was a bit annoying to work with as the machine was configured to use Spanish but hey, people all over the world deal with that

HackTheBox Writeup: Writeup

Writeup was an easy rated box - basic enumeration and exploitation for a foothold then abusing a bad path configuration with lax write permissions to escalate privileges to root. Nmap scan: Webpage on

HackTheBox Writeup: Ghoul

Ghoul was a hard rated box and man did it deserve that rating! It was a devious machine with lots of layers, false leads and trolling. Despite it being very frustrating at times,

HackTheBox Writeup: SwagShop

SwagShop was an easy rated box that was very straightforward. Enumerate, find Magento running, find and edit an exploit to access an admin panel, another exploit for a reverse shell, then an easy