Logging - HTB
Logging starts with a routine Active Directory assessment, where seemingly ordinary artifacts and a bit of intuition gradually reveal a chain of misconfigurations leading to full compromise.
Silentium - HTB
An easy Linux machine featuring web enumeration, password reset vulnerability, container escaping, and internal service access.
DevArea - HTB
A medium-difficulty Linux machine featuring SOAP services, middleware exploitation, and multiple privilege escalation vectors.
Kobold - HTB
An easy-difficulty Linux machine featuring multiple web vulnerabilities.
Trusts
Trusts techniques and commands for Active Directory security assessment.
Guardian - HTB
Linux box with IDOR in student portal, XSS via PhpSpreadsheet, CSRF admin creation, PHP filter chain RCE, and sudo abuse for root.
Era - HTB
Medium Linux machine with IDOR, FTP config exposure, PHP stream wrapper RCE, and signed-binary bypass privesc.
Imagery - HTB
Medium Linux box using blind XSS for admin session theft, LFI to source read, ImageMagick command injection for RCE, pyAesCrypt backup decryption, and Charcol cron abuse for root.