Arkham @ HackTheBox
xct2021-07-03T15:03:00+00:00Arkham was a surprisingly hard box for the 30 points that were awarded for it, as I was struggling quite a bit, especially for the user part. However in the end i enjoyed the box a lot because it forced me to use stuff I don't encounter often and therefore...
Helpline @ HackThebox
xct2021-07-03T14:57:14+00:00Helpline is a really fun box on hackthebox.eu, which I was lucky enough to get system first blood on :) Weirdly enough I couldn't get the user first blood - but more to that later.
Frolic @ HackTheBox
xct2021-06-30T11:52:48+00:00Frolic is a medium difficulty machine on hackthebox.eu, featuring a lot of CTF-ish language conversions, the usage of a public exploit for "playsms" and (simple) custom binary exploit.
Carrier @ HackTheBox
xct2021-06-30T11:53:01+00:00Carrier is a nice, medium difficulty machine on hackthebox.eu featuring information retrieval via snmp, command injection and bgp hijacking. The bgp hijacking part was a nice learning experience as this is a technique you probably don't see every day.
Ethereal @ HackTheBox
xct2021-06-30T11:53:09+00:00Ethereal is a machine on hackthebox.eu that awards 50 points, the highest possible score/difficulty and requires some really fun techniques, teaching me several new things along the way. It features extracting files from a disk image, password guessing, blind command injection, openssl reverse shells, msi backdooring & signing of executables...
Abusing Diaghub
xct2021-06-30T11:53:29+00:00This post is based on this article from google project zero. For more details please read their awesome post, I will just give a brief overview.