Reconnaissance

Enumeration

Exploitation

Windows Privilege Escalation

_____________________________________________________________

Reconnaissance

Run the nmapAutomator.sh script to automate all of the process of recon/enumeration.


Reconnaissance

Enumeration

Exploitation

Windows Privilege Escalation

_____________________________________________________________

Reconnaissance

Run the nmapAutomator.sh script to automate all of the process of recon/enumeration.


Challenge By : nickvourd

Challenge Description : Try to find out the secret which is hiding inside of these pictures and learn the truth about Mona Lisa!

Points : 30

Author : Rehman S. Beg (HTB Profile : MrReh )

_____________________________________________________________

Lets download the file and extract it content, we get 3 jpg file

monalisa.jpg

Plans.jpg


Challenge By : nickvourd

Challenge Description : John Lennon send a secret message to Paul McCartney about the next music tour of Beatles… Could you find the message and sumbit the flag?

Points : 30

Author : Rehman S. Beg (HTB Profile : MrReh )

_____________________________________________________________

Lets download the file and extract it content, we get 2 files BAND.zip and m3ss@g#_f0r_pAuL

First lets cat out m3ss@g#_f0r_pAuL


Challenge By : Arrexel

Challenge Description : Someone has leaked pictures of our unreleased movie. Can you help identify him?
Points : 20

Author : Rehman S. Beg (HTB Profile : MrReh )

_____________________________________________________________

Lets download the file and extract it content, we get widescreen.png file lets open it

To get the flag here we use StegSolve GUI tool, lets open up our widescreen.png and changing the planes gives us our flag.


Challenge By : SirenCeol

Challenge Description : There should be something hidden inside this photo… Can you find out?

Points : 30

Author : Rehman S. Beg (HTB Profile : MrReh )

_____________________________________________________________

Lets download the file and extract it content, we get hackerman.jpg file

To extract data from hackerman.jpg we need password, without knowing password lets crack it with stegcracker tool to crack password commanad is “stegcracker hackerman.jpg /usr/share/wordlists/rockyou.txt”


Challenge By : Arrexel

Challenge Description : Can you bring all the boys to the yard?

Points : 30

Author : Rehman S. Beg (HTB Profile : MrReh )

_____________________________________________________________

Lets download the file and extract it content, we get Milkshake.mp3 file

Open Milkshake.mp3 in Audacity tool


Challenge By : P3t4

Challenge Description : Find the plaintext, the key is your flag!

Flag format : HTB{key in lowercase}

Points : 10

Author : Rehman S. Beg (HTB Profile : MrReh )

_____________________________________________________________

Lets download the file and extract it content, we get ciphertext.txt file lets see what we have inside

After some google research we came to know its vigenere cipher https://www.dcode.fr/vigenere-cipher but we must know the key to decode ciphertext. Lets try to decrypt the ciphertext.


Challenge By : Stylish

Challenge Description : The flag is in the format HTB{plaintext}

Points : 10

Author : Rehman S. Beg (HTB Profile : MrReh )

_____________________________________________________________

Lets download the file and extract it content, we get “you_can_do_it.txt” lets see what we have inside

We have a random text and we have to rearranged it, lets rearrange the text and grep our flag.

Doing some google research we have found this website https://www.dcode.fr/caesar-box-cipher Caesar Box Cipher will help us to complete this challenge.


Challenge By : tomtoump

Challenge Description : Can you decrypt the message and get the flag?

Points : 20

Author : Rehman S. Beg (HTB Profile : MrReh )

_____________________________________________________________

Lets download the file and extract it content, we get 2 files flag.enc and key.pub

Lets open the files and see what we have inside

Rehman Beg

InfoSec CEH OSCP MrReh.com

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store