Safe @ HackTheBox

03Aug

Safe @ HackTheBox

By CTF , , ,

Safe is an “easy” machine on hackthebox, involving a simple buffer overflow and cracking a keepass file.

User Flag

We use ropstar, get a shell and the user flag.

Root Flag

Using keepass2john we generate a hash file for every image:

keepass2john -k <img> MyPasswords.kdbx > hash

We run rockyou-75.txt against it and find the password “bullshit” rather quickly. Inside the keepass file we find roots password “u3v2249dl9ptv465cogl3cnpo3fyhk”. Now we add our ssh key to “user”, ssh into the box and su to root.

Share this post

Author

Related Posts

28Mar

Passage @ HackTheBox

Solving Passage on HackTheBox. This is an easy box involving 2 public exploits, one for the CuteNews CMS and one... read more

10Apr

APT @ HackTheBox

APT is a 50-point machine on HackTheBox which involves getting the IPv6 Address via MS-RPC, credential spraying, and reading the... read more

09Sep

SEH Based Buffer Overflow & DLL Hijacking – UT99 @ PG Practice

We are solving UT99, an intermediate windows box on PG Practice. On this box, we are going to exploit an... read more

28Mar

Sniper @ HackTheBox

Sniper is a 30-point machine on HackTheBox that involves abusing a remote file inclusion and uploading a crafted chm file... read more

19Jan

Lab – Baby Walkthrough

Baby is an easy machine on Vulnlab that involves enumerating LDAP & spraying credentials. For SYSTEM we exploit SeBackup &... read more

27Mar

Luanne @ HackTheBox

Solving Luanne on HackTheBox. This is an easy 20-point machine involving a simple command injection and some password cracking. read more

30May

Resolute @ HackTheBox

Resolute is a 30-point Windows machine on HackTheBox that involves enumerating LDAP, Password Spraying, and using the DNSAdmins group to... read more

02Jun

P.O.O. Endgame @ HackTheBox

P.O.O. Endgame is one of HackTheBox’s endgame labs and was just retired. It involves exploiting SQL Server Links & Active... read more

13Mar

Reel2 @ HackTheBox

Solving Reel2 on HackTheBox. This is a 40 point box involving Spraying, Phishing, Sticky Notes and JEA. read more

16Dec

TMHCxHTB Matrix Madness

Using the hill cipher cracking theorem to solve the ctf challenge. read more