Tag Archives: Privilege escalation

Sauna – HackTheBox Walkthrough

Introduction: The purpose of this blog is to document the steps I took to complete hacking task of HackTheBox (https://www.hackthebox.eu/) machine that included capturing user and root flag of Sauna (https://www.hackthebox.eu/home/machines/profile/229). Resources/Tools Used: nmap smbclient Impacket’s GetNPUser.py script (https://raw.githubusercontent.com/SecureAuthCorp/impacket/master/examples/GetNPUsers.py) john evil-WinRM winPEAS mimikatz Process Followed: After connecting to HTB lab through VPN, started Sauna (10.10.10.175)Continue reading “Sauna – HackTheBox Walkthrough”

Kenobi – TryHackMe Writeup

Introduction: The purpose of this writeup is to document the steps I took to complete THM’s (https://tryhackme.com/) room Kenobi (https://tryhackme.com/room/kenobi) hacking tasks. Resources/Tools Used: Nmap smbclient Netcat [Task 1] Deploy the vulnerable machine #1             This subtask requires you to deploy the machine. #2             Scanned the machine and found seven open ports. [Task 2] Enumerating Samba for sharesContinue reading “Kenobi – TryHackMe Writeup”

Monteverde – HackTheBox Walkthrough

Introduction: The purpose of this blog is to document the steps I took to complete hacking task of Monteverde machine from Hack The Box (HTB). Resources/Tools Used: nmap smbclient enum4linux Metasploit evil-winrm winPEAS https://blog.xpnsec.com/azuread-connect-for-redteam/ https://github.com/Hackplayers/PsCabesha-tools/blob/master/Privesc/Azure-ADConnect.ps1 Process Followed: After connecting HTB lab through VPN, started Monteverde (10.10.10.172) machine. To check the available services, I scanned theContinue reading “Monteverde – HackTheBox Walkthrough”

Inclusion – THM Writeup

Introduction: The purpose of this writeup is to document the steps I took to complete TryHackMe.com (THM)’s room Inclusion hacking tasks. Resources/Tools Used: ssh https://gtfobins.github.io/gtfobins/socat/#sudo [Task 1] Deploy This is a beginner level room designed for people who want to get familiar with Local file inclusion vulnerability. #1 Deploy the machine and start enumerating No answerContinue reading “Inclusion – THM Writeup”

Resolute – HackTheBox Walkthrough

Introduction: The purpose of this blog is to document the steps I took to complete hacking task of Resolute machine from Hack The Box (HTB). Resources/Tools Used: nmap smbclient enum4linux Metasploit evil-winrm winPEAS https://medium.com/techzap/dns-admin-privesc-in-active-directory-ad-windows-ecc7ed5a21a2 https://www.abhizer.com/windows-privilege-escalation-dnsadmin-to-domaincontroller/ msfvenom Process Followed: After connecting HTB lab through VPN, started Resolute (10.10.10.169) machine. To check the available services, I scannedContinue reading “Resolute – HackTheBox Walkthrough”

Anonymous – THM Writeup

Introduction: The purpose of this writeup is to document the steps I took to complete Tryhackme.com (THM)’s room Anonymous hacking tasks. Resources/Tools Used: nmap smbclient http://pentestmonkey.net/cheat-sheet/shells/reverse-shell-cheat-sheet netcat GTFOBINS (https://gtfobins.github.io/) [Task 1] Pwn Try to get the two flags!  Root the machine and prove your understanding of the fundamentals! This is a virtual machine meant forContinue reading “Anonymous – THM Writeup”

Pickle Rick – THM Writeup

Introduction: The purpose of this writeup is to document the steps I took to complete Tryhackme.com (THM)’s room Pickle Rick hacking tasks. Resources/Tools Used: [Task 1] Pickle Rick This Ricky and Morty themed challenge requires you to exploit a webserver to find three ingredients that will help Rick make his potion to transform himself backContinue reading “Pickle Rick – THM Writeup”

Bashed – HackTheBox Walkthrough

Introduction: The purpose of this blog is to document the steps I took to complete hacking task of Bashed. Resources/Tools Used: nmap gobuster Netcat linpeas Process Followed: After connecting HTB lab through VPN, I selected the Bashed (10.10.10.68) retired machine. To check the available services, I scanned the machine with nmap scanning all ports andContinue reading “Bashed – HackTheBox Walkthrough”

Blaster -TryHackMe Writeup

Introduction: The purpose of this writeup is to document the steps I took to complete Tryhackme.com (THM)’s room Blaster hacking tasks. Resources/Tools Used: nmap gobuster Metasploit Framework [Task 1] Mission Start! This task was mainly concerned with connectivity to THM and target machine. #1 No answer needed. This subtask requires you to deploy the machine.Continue reading “Blaster -TryHackMe Writeup”

Nibbles – HackTheBox Walkthrough

Introduction: The purpose of this blog is to document the steps I took to complete hacking task of Nibbles. Resources/Tools Used: nmap Metasploit searchsploit Process Followed: After connecting HTB lab through VPN, I selected the Nibbles (10.10.10.75) retired machine. To check the available services, I scanned the machine with nmap scanning all ports and doingContinue reading “Nibbles – HackTheBox Walkthrough”

Design a site like this with WordPress.com
Get started