YPYogesh Peelainexploitnotes.hashnode.dev·15h ago · 7 min readHackTheBox: Sloink WriteupSummary NFS shares exposed the target's home directory and PostgreSQL backups. The user's psql history contained an MD5 hash that cracked to service. SSH with that account drops you immediately (shell00
YPYogesh Peelainexploitnotes.hashnode.dev·1d ago · 11 min readHackTheBox: Down WriteupExecutive Summary Down is an easy Linux machine running a simple "Is it down or just me?" web checker. The site uses curl server-side to test URLs - making it a classic SSRF target. The protocol filte00
YPYogesh Peelainexploitnotes.hashnode.dev·1d ago · 18 min readHackTheBox: FireFlow WriteupExecutive Summary FireFlow is a Linux machine running a fictional "Task Force Nightfall" intelligence platform. The web application exposes a Langflow instance (flow.fireflow.htb) with a public flow p00
YPYogesh Peelainexploitnotes.hashnode.dev·2d ago · 14 min readHackTheBox: Orion WriteupExecutive Summary JobTwo is a Windows Server 2022 machine that simulates a realistic corporate phishing and privilege escalation scenario. The attack chain begins with a job posting website that solic00
YPYogesh Peelainexploitnotes.hashnode.dev·2d ago · 16 min readHackTheBox: JobTwo WriteupExecutive Summary JobTwo is a Windows Server 2022 machine that simulates a realistic corporate phishing and privilege escalation scenario. The attack chain begins with a job posting website that solic00
YPYogesh Peelainexploitnotes.hashnode.dev·3d ago · 18 min readHackTheBox: Build WriteupExecutive Summary The "Build" machine demonstrates a complex attack chain involving multiple services in a containerized environment. The exploitation requires: Reconnaissance of internal Docker netw00
YPYogesh Peelainexploitnotes.hashnode.dev·4d ago · 7 min readHackTheBox: Data WriteupSummary Data is a Linux box running Grafana 8.0.0 behind SSH and port 3000. The Grafana version is vulnerable to CVE-2021-43798, an authentication-free path traversal in the plugin static-file handler00
YPYogesh Peelainexploitnotes.hashnode.dev·4d ago · 7 min readHackTheBox: Baby WriteupSummary Baby is an Easy Windows AD box (baby.vl, DC: BABYDC). Null LDAP bind enumerates the full domain user list, including a description field that leaks a default password (BabyStart123!) for newly00
YPYogesh Peelainexploitnotes.hashnode.dev·5d ago · 11 min readHackTheBox: Barrier WriteupSummary Barrier is a Linux machine built around a GitLab CE instance federated to an authentik SSO provider, with Apache Guacamole sitting behind the same SSO. Initial access starts with a low-privile00
YPYogesh Peelainexploitnotes.hashnode.dev·Jun 19 · 16 min readHackTheBox: Bruno WriteupBruno is a Windows Active Directory box built around a single bad assumption: that a "malware scanner" service can safely extract whatever zip a low-privileged share drops in front of it. That assumpt00
