Command Injection & Path Hijacking – Previse @ HackTheBox

Zetta is 40-point machine on hackthebox. We will get the ipv6 address of the box via ftp, use rsync to... read more

Postman is a 20-point machine on hackthebox, that involves using redis to write an ssh key to disk, cracking the... read more

Solving Luanne on HackTheBox. This is an easy 20-point machine involving a simple command injection and some password cracking. read more

We are going to solve Ready, a 30-point machine on HackTheBox. For user, we exploit the "Import Repo by URL"... read more

"Weakened Keys" was an interesting crypto challenge on InfernoCTF. read more

We are solving intelligence, a nice windows machine on HackTheBox, created by Micah. For user, we will enumerate pdfs on... read more

This post is about hackback, a really interesting and challenging machine that was released on 23.02.19 on hackthebox.eu. Techniques used... read more

Smasher2 is a difficult 50 points machine on hackthebox, involving some guessing to get the user flag (because the author... read more

Solving Academy on HackTheBox, a 20-point Linux machine on HackTheBox that involves a Laravel deserialization RCE, stored credentials & sudo... read more

Solving Crossfit, a 50-point Linux machine on HackTheBox which involves a lot of cross-site scripting, a command-injection, and finally some... read more