Introduction: The purpose of this blog is to document the steps I took to complete hacking task of Resolute machine from Hack The Box (HTB). Resources/Tools Used: nmap smbclient enum4linux Metasploit evil-winrm winPEAS https://medium.com/techzap/dns-admin-privesc-in-active-directory-ad-windows-ecc7ed5a21a2 https://www.abhizer.com/windows-privilege-escalation-dnsadmin-to-domaincontroller/ msfvenom Process Followed: After connecting HTB lab through VPN, started Resolute (10.10.10.169) machine. To check the available services, I scannedContinue reading “Resolute – HackTheBox Walkthrough”
Author Archives: Waqas Ahmed
Anonymous – THM Writeup
Introduction: The purpose of this writeup is to document the steps I took to complete Tryhackme.com (THM)’s room Anonymous hacking tasks. Resources/Tools Used: nmap smbclient http://pentestmonkey.net/cheat-sheet/shells/reverse-shell-cheat-sheet netcat GTFOBINS (https://gtfobins.github.io/) [Task 1] Pwn Try to get the two flags! Root the machine and prove your understanding of the fundamentals! This is a virtual machine meant forContinue reading “Anonymous – THM Writeup”
Pickle Rick – THM Writeup
Introduction: The purpose of this writeup is to document the steps I took to complete Tryhackme.com (THM)’s room Pickle Rick hacking tasks. Resources/Tools Used: [Task 1] Pickle Rick This Ricky and Morty themed challenge requires you to exploit a webserver to find three ingredients that will help Rick make his potion to transform himself backContinue reading “Pickle Rick – THM Writeup”
Bashed – HackTheBox Walkthrough
Introduction: The purpose of this blog is to document the steps I took to complete hacking task of Bashed. Resources/Tools Used: nmap gobuster Netcat linpeas Process Followed: After connecting HTB lab through VPN, I selected the Bashed (10.10.10.68) retired machine. To check the available services, I scanned the machine with nmap scanning all ports andContinue reading “Bashed – HackTheBox Walkthrough”
Blaster -TryHackMe Writeup
Introduction: The purpose of this writeup is to document the steps I took to complete Tryhackme.com (THM)’s room Blaster hacking tasks. Resources/Tools Used: nmap gobuster Metasploit Framework [Task 1] Mission Start! This task was mainly concerned with connectivity to THM and target machine. #1 No answer needed. This subtask requires you to deploy the machine.Continue reading “Blaster -TryHackMe Writeup”
Nibbles – HackTheBox Walkthrough
Introduction: The purpose of this blog is to document the steps I took to complete hacking task of Nibbles. Resources/Tools Used: nmap Metasploit searchsploit Process Followed: After connecting HTB lab through VPN, I selected the Nibbles (10.10.10.75) retired machine. To check the available services, I scanned the machine with nmap scanning all ports and doingContinue reading “Nibbles – HackTheBox Walkthrough”
Ice -TryHackMe Writeup
Introduction: The purpose of this writeup is to document the steps I took to complete Tryhackme.com (THM)’s room Ice hacking tasks. Resources/Tools Used: nmap Metasploit http://www.cvedetails.com [Task 1] Connect This task was mainly concerned with connectivity to THM and target machine. #1 No answer needed. Downloading configuration to access THM. #2 No answer needed. ConnectingContinue reading “Ice -TryHackMe Writeup”
Walk-through of OpenAdmin (Hack the Box)
Introduction: The purpose of this blog is to document the steps I took to complete hacking task of OpenAdmin and guide people looking to practice their penetration testing skills. Resources/Tools Used: nmap Metasploit ssh2john john https://medium.com/schkn/linux-privilege-escalation-using-text-editors-and-files-part-1-a8373396708d https://gtfobins.github.io/gtfobins/nano/#sudo Process Followed: After connecting HTB lab through VPN, I selected the OpenAdmin (10.10.10.171) machine. To check the availableContinue reading “Walk-through of OpenAdmin (Hack the Box)”
Walk-through of Forest HTB (Hack the Box)
Introduction: The purpose of this blog is to document the steps I took to complete hacking task of Forest and guide people looking to practice their penetration testing skills. Resources/Tools Used: nmap smbclient enum4linux Metasploit GetNPUsers.py John Evil-winrm winPEAS Sharphound Neo4j BloodHound Powerview secretsdump.py Process Followed: After connecting HTB lab through VPN, I selected theContinue reading “Walk-through of Forest HTB (Hack the Box)”
Walk-through of Optimum HTB (Hack the Box)
Introduction: The purpose of this blog is to document the steps I took to complete hacking task of Optimum and guide people looking to practice their penetration testing skills. Resources/Tools Used: nmap netcat searchsploit Windows Exploit Suggester (https://github.com/AonCyberLabs/Windows-Exploit-Suggester) https://www.exploit-db.com/exploits/41020 Process Followed: After connecting HTB lab through VPN, I selected the Optimum (10.10.10.8) retired machine. ToContinue reading “Walk-through of Optimum HTB (Hack the Box)”
Blog 