title: “HTB BoardLight Writeup” date: 2024-05-26 00:30:00 categories: HTB Machine tags: Default_user_pass PHP Code Injection Binary_exploitation CVE — Shell as www-data Enumeration ─# nma...

Machine Info Clicker is a Medium Linux box featuring a Web Application hosting a clicking game. Enumerating the box, an attacker is able to mount a public NFS share and retrieve the source code o...

Machine Info Bookworm is an insane Linux machine that features a number of web exploitation techniques. It features a website for a book store with a checkout process vulnerable to HTML inject...

Shell as activemq Machine Info Broker is an easy difficulty Linux machine hosting a version of Apache ActiveMQ. Enumerating the version of Apache ActiveMQ shows that it is vulnerable to Unauthent...

The Drive website have register and form login . Go to create account and login to see something maybe can we exploit . IDOR Attack Now look at Dashboard . I found people file on my dashboard...

    Enumeration nmap -sC -sV -p- -T4 --min-rate=9326 --vv bizness.htb Starting Nmap 7.94SVN ( https://nmap.org ) at 2024-01-20 23:48 EST NSE: Loaded 156 scripts for scanning. NSE: Script Pre-scann...

This machine the difficulty is medium by hackthebox.The creator for this box machine is xdann1 . So now i would give your walkthrough for this machine.I hope you enjoy : ) Enumeration First of...