Hack the Box
Certain hashes might not be up to date as I have just implemented this feature as requested by Hack the Box. If anyone is having issues with hashes Contact Here.
HTB – Blackfield
Today in Blackfield from HTB I explore a real-world example of a Windows Server when an account used for a specific task is not removed after.
HTB – Unbalanced
Unbalanced is a (really) Hard CTF style box from HTB. It features a squid web proxy, some EncFS encrypted data, and a privilege escalation through Pi-Hole.
HTB – Compromised
Compromised from HTB is an incident response type box in which a Linux environment and eCommerce solution, LiteCart have been exploited.
HTB – Fuse
Fuse from HTB is a Medium Windows vulnerability assessment based box in which you build a brute-force list Papercut and escalate with seloaddriverprivilege.
HTB – OSCP Training
Below is a list of OSCP style boxes provided by @TJ_Null on Twitter. I will be going through a box each day until my exam! Check back regularly for updates.
HTB – Active
Today I explore Active from HTB; an OSCP like box featuring a great approach to SMB enumeration with SMBClient and CrackMapExec.
HTB – Cronos
Today I explore Cronos from HTB; an OSCP like box featuring some vhost enumeration, SQL login bypass techniques and command injection.
HTB – Blunder
I try using PwnBox from HTB to do the Blunder box. It turns out to be a blunder for me and navigating the web UI.
HTB – Shocker
Today I explore Shocker from HTB; a OSCP like box featuring a Shellshock exploitable web server. Once on the box we use perl to escalate sudo.
HTB – Optimum
Today I explore Optimum from HTB; a OSCP like box featuring a Rejetto HTTP File Server v2.3 and a MS16-098 privilege escalation.
HTB – Cache
Cache from Hack the Box (HTB) explores exploits available for the OpenEMR System. Once we get on the system we used Memcache to escalate.
HTB – Beep
Using Beep from HTB I exploit Elastix 2.2.0 using a local file inclusion (LFI). I then attempted to password spray SSH and run into issues with ciphers.
HTB – Devel
Using Devel from HTB I will show you how to exploit a Windows Server with anonymous FTP enabled and IIS. We will then run MS11-046 exploit to get root.
HTB – Legacy
Today using Legacy from HTB I will show you how to exploit MS17-010 EternalBlue with a custom shellcode and without the use of Metasploit.
HTB – Lame
Today using Lame from HTB I will show you how to exploit SMB shares with null authentication. This is for SAMBA 3.0.20 and without the need for Metasploit.