htb

Hack The Box - Writeup

Posted on June 22, 2019

Description SQLI in CMSMS to get a user shell & use run-parts which is run at each SSH login to get a reverse shell as root. [Read More]

#htb

Posted on May 26, 2019

Use Magento Admin Panel with magpleasure_filesystem to get a user shell & use sudo without password to get a root shell. [Read More]

#htb

Posted on May 14, 2019

Exploit notification form in PRTG Network Monitor. [Read More]

#htb

Posted on February 11, 2019

SQLI through email & weak SSH keys in debian to get a user shell & escape RBASH & screen local root exploit to get a root shell. [Read More]

#htb

Posted on February 11, 2019

DNS zone-transfer to check new domains & combo LFI, SMB to get a user shell & python library injection to get a root shell. [Read More]

#htb

Posted on January 22, 2019

RFI in Helpdeskz to get a user shell & linux kernel local exploit to get a root shell. [Read More]

#htb

Posted on December 19, 2018

Exploit Unrealircd vulnerability with msf to get a user shell & exploit local suid binary to get a root shell. [Read More]

#htb