• Schooled Writeup [HTB]

  11 Sep 2021

  Schooled is a Free BSD based machine that was active since April 3rd of 2021 to September 11th, on this machine we will use a XSS vulnerability to steal the cookie of a teacher inside Moodle, once with the privileges of this user we will be able to exploit CVE-2020-14321...

  HackTheBox    Cross Site Scripting    Moodle   

• Knife Writeup [HTB]

  28 Aug 2021

  Knife is a linux based machine that was active since May 22th of 2021 to August 28th, on this machine we will get code execution through a backdoor that was left on the PHP repository, and escalate privileges due to an executable that allows us to set our editor for...

  HackTheBox    php   

• Love Writeup [HTB]

  07 Aug 2021

  Love is a Windows based machine that was active since May 1st of 2021 to August 7th, on this machine we will take advantage of and SSRF vulnerability to access to page that is only accesible from the inside, then get access to system that allows us to upload arbitratry...

  HackTheBox    Server Side Request Forgering    AlwaysInstallElevated   

• TheNoteboook Writeup [HTB]

  31 Jul 2021

  The Notebook is a Linux based that was active since March 6th of 2021 to July 1st, on this machine we will get to a webpage that uses Json Web Tokens, testing it we see that it set the link of the key of tokens on the token itself, so...

  HackTheBox    Docker    Json Web Token   

• Armageddon Writeup [HTB]

  24 Jul 2021

  Armageddon is a Linux based machine that was active since March 27th of 2021 to July 24th, on this machine we will exploit the well known Drupalgeddon vulnerability, crack the hash of the admin user of Drupal, and generate a malicious snap package that runs code when it’s installed so...

  HackTheBox    snap    Drupal