Machine Info PoV is a medium-rated Windows machine on HackTheBox. It involves exploiting an Insecure Deserialization Vulnerability in ASP.NET 4.5 for initial foothold. For lateral movement, we nee...

Machine Info Buziness form Hackthebox involved exploiting CVE-2023-49070 an pre-authentication Remote Code Execution (RCE) & CVE-2023-51467 an Authentication Bypass to gain initial access on b...

Machine Overview Backfield is a hard difficulty Windows machine featuring Windows and Active Directory misconfigurations. Anonymous / Guest access to an SMB share. Kerbrute identify that support u...

Machine Info Devvortex was an easy level Linux machine, involves exploiting CVE-2023-23753 for initial access and CVE-2023-1326 for Privilege Escalation User Scanning through Nmap First of all...

CHALLENGE DESCRIPTION The malevolent spirits have concealed all the Halloween treats within their secret vault, and it’s imperative that you decipher its enigmatic seal to reclaim the candy before...

Machine Info Intelligence involves exploiting IDOR to find pdf files, which hold the default password for Tiffany.Molina. For Privilege Escalation, we will be performing Delegation attack to get t...

Machine Info Doctor was an Low rated Linux machine on Vulnyx, involved exploiting Path Traversal Vulnerability to read encrypted id_rsa key which then be cracked using john to get initial access o...

Machine Info Return is an easy-rated Windows Active Directory machine. It involves dumping the svc-printer password from an LDAP bind request. For privilege escalation, the svc-printer user was a ...

Machine Info Dump was an easy rated Linux machine on Vulnyx, Involves dumping user hashes from SAM file and cracking it those hashes using hashcat for initial access. For root access, user dumper ...

User Scanning through Nmap First of all we will go with nmap to scan the whole network and check for services running on the network. To scan the whole network and find all the open ports i use...