Arkanoid

HackTheBox - Sauna

Sauna is an easy Active Directory based machine

HackTheBox - Book

HackTheBox - ServMon

Resolute is an easy Windows Machine

HackTheBox - Monteverde

Medium Level Active Directory Box

HackTheBox - Resolute

Resolute is an easy Active Directory based machine

HackTheBox - Obscurity

Obscurity is a box which is completely based on python codes where we exploit them one by one to get multiple users and also the root.

HackTheBox - OpenAdmin

OpenAdmin was an easy box which had a vulnerability on one of its service OpenNetAdmin and then privesc using sudo

HackTheBox - Control

Control runs a vulnerable PHP web application that controls access to the admin page by checking the X-Forwarded-For HTTP header. By adding the X-Forwarded-For HTTP header with the right IP address we can access the admin page and exploit an SQL injection to write a webshell and get RCE. After pivoting to another user with the credentials found in the MySQL database, we get SYSTEM access by modifying an existing service configuration from the registry.

HackTheBox - Mango

Mango was a medium box with a NoSQSL injection in the login page that allows us to retrieve the username and password. The credentials we retrieve through the injection can be used to SSH to the box. For privilege escalation, the jjs tool has the SUID bit set so we can run scripts as root.

HackTheBox - Traverxec

Traverxec is an easy box that start with a custom vulnerable webserver with an unauthenticated RCE that we exploit to land an initial shell. After pivoting to another user by finding his SSH private key and cracking it, we get root through the less pager invoked by journalctl running as root through sudo.

HackTheBox - Registry

Registry is a hard box which has vulnerable Bolt CMS , Docker Registry and then restic service which leads to root.