Published onJuly 22, 2023HTB CronOSnslookupDNSSQLiCommand-InjectioncrontabVery intriguing machine, where we exploit multiple different endpoints and pivot in ways where I was precisely mentally evaluated.
Published onJuly 22, 2023HTB KotarakTomCatSSRFwgetTomCat is the CMS which gets exploited with SSRF, to the privesc with wget.
Published onJuly 22, 2023HTB SolidState4555/optRather straightforward machine, found an exploit on 4555 and privesc'd with information in /opt.
Published onJuly 21, 2023HTB BrainfuckDNSWordPressSMTPEnumerating DNS leads to finding a vulnerable WordPress endpoint, where we exploit SMTP to gain root.
Published onJuly 20, 2023HTB SundayfingerPassword-Crackingsudo--lwgetExploiting port 79 using finger, cracking passwords, privesc with sudo -l, to then find wget is exploitable.