Htb

hey, in this blog we are going to solve a challenge on hacking the box called templated so let’s start the instance and hack the challenge.

A walkthrough of the Secret box on Hack the Box Enumeration The enumeration phase starts with an nmap scan of the system.

Hello there, Well, this is my first write-up on the machine paper on HTB. SO let’s Hack “THE OFFICE”

In this writeup, we are going to solve a machine called secret on hackthebox RECONNAISSANCE Nmap scan

SQLMap is a powerful open-source tool that is widely used for detecting and exploiting SQL injection vulnerabilities in web applications. It simplifies the process of identifying SQLi vulnerabilities, determining the type of database, and extracting sensitive information from the database. However, there are some limitations to SQLMap. For instance, it…

Today I found myself reviewing past write-ups for boxes on HTB, only to find I’d missed Devel out by accident. (Always really enjoy this box anyway). Enumeration Firstly we run an AutoRecon scan to see open ports: sudo env "PATH=$PATH" autorecon 10.10.10.5 Port 21 (FTP) and port 80 (HTTP) are…

The next box for me to do was Lazy. This was another learning opportunity for me — I missed something stupid because I rushed it and didn’t do some simple checks on the web application (such as looking at the requests in Burp — a pretty obvious step!). Enumeration Running…

CVE-2022–23935, Microsoft Message Analysis, Windows XML Event Log Analysis(EVTX), Reverse Engineering — Target IP: 10.10.11.197 nmap scan : nmap -sC -sV -Pn <ip> > nmapres.txt upload an image and the output goes like : This version vulnerable : https://gist.github.com/ert-plus/1414276e4cb5d56dd431c2f0429e4429 tcpdump is a data-network packet analyzer computer program that runs under a command line interface. …

A detailed walkthrough for solving Forgot on Hack The Box. The box contains vulnerability like host header injection, cache deception, hardcoded credentials and Code injection in `saved_model_cli` in TensorFlow on preprocess_input_exprs_arg_string function. Enumeration NMAP nmap -sC -sV -oA nmap/10.10.11.188 10.10.11.188 -v 22/tcp open ssh OpenSSH 8.2p1 Ubuntu…