Logging - HTB
Logging starts with a routine Active Directory assessment, where seemingly ordinary artifacts and a bit of intuition gradually reveal a chain of misconfigurations leading to full compromise.
Silentium - HTB
An easy Linux machine featuring web enumeration, password reset vulnerability, container escaping, and internal service access.
DevArea - HTB
A medium-difficulty Linux machine featuring SOAP services, middleware exploitation, and multiple privilege escalation vectors.
Kobold - HTB
An easy-difficulty Linux machine featuring multiple web vulnerabilities.
Valid User (No Password)
Valid User (No Password) techniques and commands for Active Directory security assessment.
Codetwo - HTB
Easy Linux box with a vulnerable js2py sandbox in a web editor, followed by DB hash cracking and npbackup-cli abuse for root.
ACLs/ACEs permissions
ACLs/ACEs permissions techniques and commands for Active Directory security assessment.
Facts - HTB
Easy Linux target exploiting a Cameleon LFI to steal an SSH key, crack its passphrase, then abuse facter custom facts for root.