Mantis - Hack The Box 7h3M0nk 2021-03-31 HackTheBox tl;dr Kerberos Exploitation MS MySQL Server MS14-068 GoldenTicket Read More Writeup HackTheBox Mantis Goldenticket
Bounty - Hack The Box 7h3M0nk 2021-03-27 HackTheBox tl;dr RCE by uploading web.config Windows IIS 7.5 MS10-059: Vulnerabilities in the Tracing Feature for Services Could Allow Elevation of Privilege Read More HackTheBox WriteUp Bounty
KarDi Bee X - Securinets Quals 2021 g4rud4 2021-03-22 Forensics / Memory tl;dr File recovery from the memory dump Environment variables analysis. RAR and Zip password cracking. Cracking Windows user password hash. Extracting Keepass Master Password from keystrokes of logged data. Read More Volatility Windows Memory Analysis Securinets Quals
Be My Guest - UTCTF21 g4rud4 2021-03-15 Forensics / Network tl;dr Retrieving the flag from Samba SMB workgroup guest. Read More UTCTF SMB
Hack Bob's Box - UTCTF21 g4rud4 2021-03-15 Forensics / Network tl;dr Anonymous login to FTP server. Retrieve SSH login username and password from Firefox History Read More UTCTF FTP Firefox History
Cronos - Hack The Box 7h3M0nk 2021-03-03 HackTheBox tl;dr SQL Injection Linpeas Priv-Esc Read More HackTheBox Write up Linux Box Cronos
dummyper - AeroCTF 2021 fug1t1v3 2021-02-28 Reversing / Linux tl;dr The dump has some encrypted functions The encrypted bytes are being xorred with a 32 byte key Find the xor_key in the dump Use xor_key offset to find the offset of AES_key and iv AES_CBC decrypt to find flag Read More Linux Reversing AES_CBC AeroCTF
Beep - Hack The Box 7h3M0nk 2021-02-28 HackTheBox tl;dr Shellshock Local File Inclusion Read More HackTheBox Write up Beep Linux Box
Arctic - Hack The Box 7h3M0nk 2021-02-16 HackTheBox Cracking the Arctic Box. tl;dr Adobe ColdFusion 8 MS10-059 CVE-2009-2265 Read More HackTheBox WriteUp Arctic
Valentine - Hack The Box 7h3M0nk 2021-02-13 HackTheBox Cracking Valentine box without using metasploit. tl;dr HeartBleed Vulnerability CVE-2014-0160 Read More HackTheBox WriteUp Valentine