08 Nov 2020
Cronos is a fun box where I had to put together multiple steps in order to get on the box. After gaining user access it stayed true to its name where root was just a simple cron job away.
01 Nov 2020
Granny was, as expected, an older Windows machine. Running Microsoft IIS 6.0 on Windows Server 2003 allowed me to exploit its webdev options to gain an initial foothold on the box and then use the churrasco exploit to gain system access.
18 Oct 2020
This box from HTB is well... lame. After noticing an odd port being open, 3632, a quick nmap script gives me remote code execution allowing me to gain a user priv reverse shell. After which abusing the nmap application which has the SUID bit set gives a quick root shell.
11 Oct 2020
Vulnserver is an intentionally vulnerable Windows based TCP server. It is commonly used to practice exploitation techniques like what I have done with it. In this walk-through I have spun vulnserver up on a Windows 10 VM and will exploit it using a buffer overflow vulnerability within one of it's commands. I will be using the immunity debugger and pythons mona modules in order to exploit this application.
04 Oct 2020
Blue is alot like the Legacy box but ths time instead of exploiting ms-08-067 I will be using a script taking advantage of the ms-17-010 vulnerability to get root.