HTB: EscapeTwo Writeup
EscapeTwo is an Easy-difficulty Windows Active Directory machine from HackTheBox featuring SMB enumeration, credential extraction from Excel files, SQL Server exploitation, and Kerberos abuse.
HTB: inflitrator Writeup
inflitrator is a Hard-difficulty Windows machine from HackTheBox.
HTB: blazorized Writeup
blazorized is a Hard-difficulty Windows domain controller machine from HackTheBox.
HTB: axlle Writeup
axlle is a Hard-difficulty Windows machine from HackTheBox.
HTB: editorial Writeup
editorial is an Easy-difficulty Linux machine from HackTheBox featuring SSRF vulnerability and GitPython RCE.
HTB: blurry Writeup
blurry is a Medium-difficulty Linux machine from HackTheBox.
HTB: freelancer Writeup
freelancer is a Hard-difficulty Windows machine from HackTheBox.
HTB: boardlight Writeup
boardlight is an Easy-difficulty Linux machine from HackTheBox featuring Dolibarr ERP/CRM exploitation.
HTB: magicgarden Writeup
magicgarden is a Insane-difficulty Linux machine from HackTheBox.
HTB: solarlab Writeup
solarlab is a Medium-difficulty Windows machine featuring SMB enumeration, credential extraction from Excel files, ReportHub web application exploitation, and CVE-2023-33733 (ReportLab RCE).
HTB: mailing Writeup
mailing is a Easy-difficulty Windows machine from HackTheBox.
HTB: usage Writeup
usage is a Easy-difficulty Linux machine from HackTheBox.
HTB: iClean Writeup
iClean (Capiclean) is a Medium-difficulty Linux machine featuring Flask SSTI exploitation and JWT-based authentication bypass.
HTB: mist Writeup
mist is a Insane-difficulty Windows machine from HackTheBox.
HTB: Perfection Writeup
Perfection is an Easy-difficulty Linux machine from HackTheBox featuring Server-Side Template Injection (SSTI) in a Ruby web application.
HTB: skyfall Writeup
skyfall is an Insane-difficulty Linux machine from HackTheBox featuring CVE-2023-28432 (Minio info disclosure), HashiCorp Vault integration, and advanced privilege escalation techniques.
HTB: pov Writeup
pov is a Medium-difficulty Windows machine from HackTheBox.
HTB: analysis Writeup
analysis is a Hard-difficulty Windows machine from HackTheBox.
HTB: monitored Writeup
monitored is a Medium-difficulty Linux machine from HackTheBox.
HTB: bizness Writeup
bizness is a Easy-difficulty Linux machine from HackTheBox.
HTB: Surveillance Writeup
Surveillance is a Medium-difficulty Linux machine from HackTheBox featuring Craft CMS and ZoneMinder exploitation.
HTB: devvortex Writeup
devvortex is an Easy-difficulty Linux machine from HackTheBox. Exploitation involves Joomla vulnerability discovery, credential extraction, and privilege escalation via apport-cli pager escape.
HTB: hospital Writeup
hospital is a Medium-difficulty Windows machine from HackTheBox.
HTB: napper Writeup
napper is a Hard-difficulty Windows machine from HackTheBox.
HTB: visual Writeup
visual is a Medium-difficulty Windows machine from HackTheBox.
HTB: cozyhosting Writeup
cozyhosting is an Easy-difficulty Linux machine from HackTheBox featuring Spring Boot Actuator exposure, session hijacking, command injection, and SSH privilege escalation.
HTB: zipping Writeup
zipping is a Medium-difficulty Linux machine from HackTheBox featuring file upload bypass via null byte injection and privilege escalation through shared object hijacking.
HTB: cybermonday Writeup
cybermonday is a Hard-difficulty Linux machine from HackTheBox.
HTB: keeper Writeup
keeper is an Easy-difficulty Linux machine from HackTheBox featuring Request Tracker enumeration, default credential exploitation, and KeePass memory dump vulnerability exploitation.
HTB: download Writeup
download is a Hard-difficulty Linux machine from HackTheBox. Partial writeup with reconnaissance findings documented.
HTB: gofer Writeup
gofer is a Hard-difficulty Linux machine from HackTheBox.
HTB: registrytwo Writeup
registrytwo is a Hard-difficulty Linux machine from HackTheBox.
HTB: authority Writeup
authority is a Medium-difficulty Windows machine from HackTheBox.
HTB: sau Writeup
sau is an Easy-difficulty Linux machine from HackTheBox involving SSRF, command injection, and privilege escalation.
HTB: Pilgrimage Writeup
Pilgrimage is an Easy-difficulty Linux machine featuring an image shrinking service with exposed git repository, ImageMagick LFI, and Binwalk RCE vulnerabilities.
HTB: busquedas Writeup
busquedas is a Easy-difficulty Linux machine from HackTheBox.
HTB: inject Writeup
inject is a Easy-difficulty Linux machine from HackTheBox.
HTB: interface Writeup
interface is a Medium-difficulty Linux machine from HackTheBox.
HTB: soccer Writeup
soccer is an Easy-difficulty Linux machine from HackTheBox featuring web file manager exploitation, SQL injection via WebSocket, and privilege escalation through doas.