$ ~/blog _

Preface: Pit is a medium box on HackTheBox.eu. On our initial nmap scan we find some http ports. We can't find an attack surface on them. Then we started a UDP nmap scan. Where we found an interest...

Preface: Cap is a easy box on HackTheBox.eu. After some manual enumeration we find something really useful on the port 80. We are able to download a specific file and inspect it further. With this...

Preface: Knife is a easy box on HackTheBox.eu. We got one service running on the machine. It is the classic apache on port 80. On the website we find nothing interesting. But one response header re...

Preface: Armageddon is a easy box on HackTheBox.eu. With an basic nmap scan we discovered a vulnerable and outdated content management system. With a known CVE we are able to gain a shell as apach...

Preface: Time is a medium box on HackTheBox.eu. With an basic nmap scan we discovered two ports. On the port 80, http we find an JSON beautifier and validator. The validation option seems like a...

Preface: Luanne is a easy box on HackTheBox.eu. With an basic nmap scan we discover two http ports. Both are restricted with an .htaccess file. But on port 80 there is a robots.txt file which...

Preface: Tentacle is a hard box on HackTheBox.eu. With an basic nmap scan we discover some open ports. But the interesting one's are port 53, DNS and port 3128, http-proxy. While access the port 31...

Preface: Tenet is a medium box on HackTheBox.eu. It has a web server running on port 80. On enumeration we find a WordPress installation which reveals some great informations for us. We will find a...

Preface: Academy is a easy box on HackTheBox.eu. We will find a register form on port 80. Where we intercept the register request to gain more administration priviliges. Next we discover a subdomai...

Preface: If you want to decrypt a writeup for an active windows box on HTB or from other plattforms using the NTLM hash of the administartor user, you are on the right place. In this How-To post I wi...