/HackTheBox-Writeups

Hack The Box writeups by Şefik Efe.

Primary LanguageCGNU General Public License v3.0GPL-3.0

Hack The Box Writeups by Şefik Efe

Would you like to give me stars in Hack The Box? Thanks in advance :)

Hack The Box
Support

I'll be posting retired boxes' and some challenges' writeups.

You can search keywords and/or topics between writeups using top left corner search bar.

Index Table

My favourite writeup so far: Breadcrumbs


      Box       Writeup Difficulty OS Foothold Lateral Movement Privilege Escalation
backdoor Backdoor Easy Linux /proc enum using Dir traversal & GDB Server Remote Payload Exec None Screen cronjob
secret Secret Easy Linux JS Code Review & Signing JWT using Bash, OS CMDI, Custom Exploitation None C Code Review & Leaking Memory by triggering CoreDumps
driver Driver Easy Windows Grab NTLMv2 using SMB path in scf files None PrintNightmare (CVE-2021-1675)
horizontall Horizontall Easy Linux Strapi CMS RCE None Sudo Heap Based Bof (sudoedit) & Laravel Exploitation (phpggc)
thenotebook TheNotebook Medium Linux JWT Auth RS256 Home backup Docker Escape Overwriting RunC
armageddon Armageddon Easy Linux Drupalgeddon2 MySQL snapd (dirty_sock)
breadcrumbs Breadcrumbs Hard Windows LFI & PHP SESSION & Powershell File Upload SQLite DB Reversing & SQLi
atom Atom Medium Windows Signature Validation Bypass in electron-updater None PortableKanban & redis
ophiuchi Ophiuchi Medium Linux SnakeYaml Deserialization None WebAssembly formats
spectra Spectra Easy Linux WordPress reverse shell None initctl with sudo
tenet Tentacle Hard Linux CVE-2020-7247 None Cronjob abuse & Misconfigured keytab
tenet Tenet Medium Linux PHP Object Injection None Race Condition
scriptkiddie ScriptKiddie Easy Linux Msfvenom Template Injection None msfconsole with sudo

─ Written by f4T1H ─