cyberlabhelp.hashnode.devHackTheBox ReactOOPS (Web challenge) — Full WalkthroughReactOOPS is a web-focused challenge that demonstrates how modern JavaScript frameworks can introduce critical backend vulnerabilities when misconfigured. In this walkthrough, we enumerate a Next.js application, identify a vulnerable React Server Com...4d ago·3 min read
cyberlabhelp.hashnode.devHackTheBox Crocodile (Linux Room) — Full WalkthroughCrocodile is a beginner-friendly Linux room that focuses on fundamental enumeration techniques, including Nmap scanning, anonymous FTP access, and directory brute forcing. In this walkthrough, we will take a structured approach to identifying exposed...Feb 12·5 min read
cyberlabhelp.hashnode.devHackTheBox Sequel (Linux Room) — Full WalkthroughThis write-up follows the same format and structure as my previous articles, combining short theoretical questions with a practical walkthrough to demonstrate how a misconfigured MySQL/MariaDB service can expose sensitive data. Task 1 During our sca...Feb 10·3 min read
cyberlabhelp.hashnode.devHackTheBox Redeemer (Linux Room) — Full WalkthroughThis article focuses on identifying and exploiting a misconfigured Redis service using the Redeemer room on HackTheBox. It combines essential theory with hands-on enumeration to show how exposed Redis instances can leak sensitive data. Task 1 Which ...Feb 8·3 min read
cyberlabhelp.hashnode.devHackTheBox Dancing (Windows Room) — Full WalkthroughThis article covers a mix of theoretical knowledge and hands-on practice focused on the SMB (Server Message Block) protocol. Using the Dancing room on HackTheBox, I demonstrate how basic SMB enumeration works in a real environment and how misconfigur...Feb 8·3 min read