My name is Chris and I am a Jack of all Trades, technophile with a special focus on cybersecurity and cloud solutions. I am originally from Toronto, Ontario, and currently living in the Cayman Islands.
Below are just some of the vendors and technologies I've worked with, implemented or maintained.
Christopher Soehnlein2021-06-21T13:57:28-05:00May 25th, 2021|Categories: HTB, Technology|Tags: Cacti, CAP_SYS_MODULE, docker, HTB, Monitors, Pivot, Tomcat, WordPress|
Monitors is an Hard box from HTB and created by TheCyberGeek. This box features a WordPress plugin exploit via wp-with-spritz allowing for LFI/RFI and an internal docker with Apache Tomcat running.
Christopher Soehnlein2020-10-10T10:39:40-05:00October 3rd, 2020|Categories: HTB, Technology|Tags: Blackfield, CrackMapExec, Evil-WinRM, HTB, john, Seatbelt, SeBackupPrivilege, smbmap, Windows|
Today in Blackfield from HTB I explore a real-world example of a Windows Server when an account used for a specific task is not removed after.
Christopher Soehnlein2021-06-23T11:48:34-05:00June 21st, 2021|Categories: HTB, Technology|Tags: DirtySock, Drupal, Drupalgeddon2, john, snap, WSO|
Armageddon is an Easy box from HTB and created by bertolis. This box features the widely known Drupalgeddon exploit and a DirtySock escalation.
Christopher Soehnlein2021-06-23T12:24:04-05:00June 21st, 2021|Categories: HTB, Technology|Tags: FeroxBuster, initctl, Metasploit, rustscan, sudo, WordPress, WPScan|
Spectra is an Easy box from HTB and created by egre55. This box features a poorly configured WordPress dev environment and initctl escalation.
Christopher Soehnlein2021-06-13T13:24:26-05:00June 12th, 2021|Categories: HTB, Technology|Tags: HTB, Object Injection, PHP, Tenet, WordPress|
Delivery is a Medium Apache web-server box running WordPress with a unserialize PHP exploit from Hack the Box and created by egotisticalSW.
Christopher Soehnlein2021-05-26T13:57:51-05:00May 26th, 2021|Categories: HTB, Technology|Tags: CVE-2020-14321, FreeBSD, HTB, moodle, Schooled, sub-domain, XSS|
Schooled is an Medium box from HTB and created by TheCyberGeek. This box features a XSS exploit and priv esc via moodle and a malicious pkg for root.
Christopher Soehnlein2021-05-24T17:53:04-05:00May 24th, 2021|Categories: HTB, Technology|Tags: CSRF, CVE-2019-5736, docker, HTB, JWT, TheNotebook, WSO|
TheNotebook is an Medium box from HTB and created by mostwanted002. This box features a CSRF exploit via JWT and a docker exploit.
©2014 – 2021 • ISLANDDOG • Powered by WordPress