password cracking Archives • Vulndev

10JunJune 10, 2019

Protected: Rastalabs Prolab @ HackTheBox

There is no excerpt because this is a protected post.

By xctCTFactive directory, bloodhound, domain trust, dpapi, gpo, keepass, osint, owa, password cracking, password spraying, pcap, rop, SQL Server

18MayMay 18, 2019

Ellingson @ HackTheBox

Ellingson is fun and quick 40 points machine on hackthebox, featuring the abuse of the python/flask werkzeug debugger, cracking a password and a custom binary exploit.

By xctCTFbinary exploitation, flask, hackthebox, linux, password cracking, werkzeug

28AprApril 28, 2019

Bastion is an easy 20 points machine on hackthebox. It is about mounting a .vhd file over the network, retrieving password hashes from backups (via SAM) and a privilege escalation that involves stored credentials in mRemoteNG.

By xctCTFhackthebox, mRemoteNG, password cracking, windows

28MarMarch 28, 2019

Helpline @ HackThebox

Helpline is a really fun box on hackthebox.eu, which I was lucky enough to get system first blood on :) Weirdly enough I couldn't get the user first blood - but more to that later.

By xctCTFhackthebox, manageengine, mimikatz, password cracking, sql injection, web, windows

Tag - password cracking

Protected: Rastalabs Prolab @ HackTheBox

Ellingson @ HackTheBox

Bastion @ HackTheBox

Helpline @ HackThebox