APAmal PKinblog.amalpk.in00Hackthebox Fluffy Walkthrough — Windows Seasonal Box6d ago · 7 min read · Fluffy is a realistic Windows Active Directory (AD) machine on Hack The Box's Seasonal track that simulates a corporate environment with common misconfigurations and vulnerabilities often seen in realJoin discussion
Aameya0xinameya0x.hashnode.dev00Silentium: From AI Password Reset to Root via Symlink SorceryMay 2 · 5 min read · 1. Recon — The Usual Ritual nmap -sCV 10.129.45.122 -A -T 4 Open ports: 22 (SSH) and 80 (Nginx). The web server redirects to silentium.htb, so we add it to /etc/hosts like responsible adults. NothiJoin discussion
Aameya0xinameya0x.hashnode.dev00Kobold: When the AI Dev Tool Hands You a ShellApr 26 · 7 min read · Reconnaissance We start where every good story begins — with nmap and absolutely no idea what we're walking into. nmap -sCV -A 10.129.40.208 -p- Results come back with four open ports: Port ServJoin discussion
MSMOHIT SINGH PAPOLAinblog.reapsec.com00AirTouchApr 19 · 11 min read · OVERVIEW So as always we are given an IP so let’s start the enumeration using NMAP ENUMERATION So there are only two ports that are opened one is SSH and other one is SNMP so if you do script scaJoin discussion
Sshkzinmyhack.tech30Reaching the Top Ranks on Hack The Box, and What Changed Along the WayApr 16 · 5 min read · After 6 or 7 years on Hack The Box, competing, failing, learning, and coming back again, I finally reached the Top 7 worldwide. The number itself is not what matters most, but everything behind it: tiJoin discussion
LVLong Voinlongvh0904.hashnode.dev00HTB Attack Diaries — SilentiumApr 14 · 17 min read · Introduction An Easy box that taught me the hardest lesson: read the CVE before you start shooting Silentium is an Easy-rated Linux box centered around FlowiseAI, a low-code AI agent platform, and GJoin discussion
LVLong Voinlongvh0904.hashnode.dev00HTB Attack Diary — Garfield (Hard, Windows)Apr 8 · 43 min read · Introduction Garfield is a Hard-rated Windows machine that simulates a realistic Active Directory environment with a primary Domain Controller (DC01) and a Read-Only Domain Controller (RODC01). You'reJoin discussion
LVLong Voinlongvh0904.hashnode.dev00Attack Diary: HackTheBox — CapApr 6 · 11 min read · Introduction Today's target goes by the name Cap — an Easy-rated machine on HackTheBox. Easy or not, you never know until you try. This is my diary of the entire journey, from knowing nothing about thJoin discussion
AAdhamincyberlabhelp.hashnode.dev00HackTheBox Cap (Linux Room) — Full WalkthroughMar 1 · 6 min read · In this write-up, we walk through Cap, an easy-rated machine that demonstrates how sensitive data exposure and poor service configuration can lead to full system compromise. The box highlights: PackeJoin discussion
JTJeff Tonginwind010.hashnode.dev00PathfinderFeb 24 · 2 min read · I've been meaning to consolidate scripts I've been using to call various reconnaissance tools for Hack-the-Box and CTFs. The tools (first of each list) are usually the ones I use for pre-liminary scanJoin discussion
