This is a easy linux machine. In port 80 is running a WordPress vulnerable SQL Injection and WordPress XXE Vulnerability. Accessing file config wordpress, you gain credential FTP. In FTP there’re c...

This is a Linux easy machine. To get the shell is need enum SNMP. There’re the user daniel credential was found. After login SSH, into machine is discovered a page web in localhost ]being necessary...

This machine was an medium box Linux from HackTheBox. Your entrypoint is with Web app in port 50000, Jenkins. Jenkins has a known RCE vuln. To escalate privilege is found a file .kdbx that is a pas...

This is a medium box Windows. We starts enum users through RPC, where It was found a users list. Also It was found a password. Then It is done a Password Spray that allow to find melanie credential...

This machine was an medium box Linux from HackTheBox. Your entrypoint is with Web app. There’re a page login where It’s possible bypass SQL Injection. After login there’re a field vulnerable to R...

This is a easy Windows box. Enumerating the port 80, a webapp is discovered: Http File Server 2.3. This webapp is vulnerable to RCE. I get the kotas user, that has admin permissions. The exploit ...

This is a box Windows easy, where is possible to explore the vuln EternalBlue. Have a good time! Introdution https://app.hackthebox.com/machines/Legacy IP: 10.10.10.4 Diagram graph TD En...

This box is a Windows Easy. We’ll start enumerate SMB, where the Replication share will find. There’re a file that contains a user and a pass encrypted with GPP. After to decrypt the pass, we will ...

This was a machine very easy in Hack The Box. In it we explore a vulnerability called ShellShock. The privilege escalation was with sudo in the perl binary. The exploit for this machine is on the...

This is a easy linux machine. We’ll starts by finding a WordPress plugin with a directory traversal bug, that allows me to read files from the filesystem. We’ll explore this vuln to read the file i...