This is a writeup about a vulnhub machine
InfoSec Prep
This box is an really easy box in order to make a small selection for entering a
give away for a 30d voucher to the OSCP Lab, Lab materials, and an exam attempt.
The box was created by
FalconSpy and publish on July
11 2020.
It involves a robots.txt file, some base64 an SSH key, lxd and a SUID binary.
This is a writeup about a retired HacktheBox machine: Forwardslash created by InfoSecJack and chivato publish on April 4, 2020. This box is classified as an hard machine. The user part inplies some enumeration a LFI, some PHP filter, a home made backup binary. The root part implies some home made crypto (don't) and a LUKS image.
This box is a writeup about a retired HacktheBox machine:
Traverxec.
This box is rated as an easy box. It implies the exploitation of a CVE on
notsromo, the use of some nostromo misconfiguration and a little trick to
trigger a page with a sudo command.
This box is a writeup about a retired HacktheBox machine:
Postman publish on
Novemer the second 2019 by
TheCyberGeek.
This box is rated as easy box. It implies a redis server, a id_rsa.bak, john
the ripper and webmin 1.910.
This box is a writeup about a retired HacktheBox machine: Bitlab. This box is rated as a medium box. It implies a gitlab, a user, some enumeration, a PostgreSQL database, some pain with a b64 password and some basic reverse engineering on a Windows binary.
If you just want to play with the binary: it is available in the "RemoteConnection.exe" part.
This is a writeup about a retired HacktheBox machine: Craft This box is classified as a medium machine. The user part is quit long and involve to find "secrets" in a git repository, access an API to get a reverse shell and manipulate a MySQL database in a jailed environment. The root part is quit easier and involve to interact with a vault instance.
