HTB

A collection of 46 posts

HackTheBox Writeup: Cascade

HackTheBox Writeup: Cascade

Cascade was a medium rated Windows machine where a legacy password found in LDAP enabled access to SMB shares. In those shares were various files, one of which was a registry file containing

HackTheBox Writeup: Sauna

HackTheBox Writeup: Sauna

Sauna was an easy rated Windows box with a focus on Active Directory. A list of users was generated from a website and AS-REP roasting was used to obtain a password hash. This

HackTheBox Writeup: Book

HackTheBox Writeup: Book

Book was a very interesting medium rated Linux machine that introduced me to some new techniques. SQL Truncation was used to takeover the admin account in a web application. XSS was then used

HackTheBox Writeup: ForwardSlash

HackTheBox Writeup: ForwardSlash

ForwardSlash was a hard rated Linux box where a LFI vulnerability on a file upload function found on a vhost was exploited with PHP wrappers to find creds that worked for SSH. A

HackTheBox Writeup: PlayerTwo

HackTheBox Writeup: PlayerTwo

PlayerTwo was an insane rated Linux box that was a hell of a journey. I debated about doing this writeup because I got the root flag in an unintended way but hey, it's