Nest is one of the most challenging easy machines on HTB including a lot of new aspects as cryptography, de-compiling .Net application and extensive work with SMB shares. So let’s get started… U...

FriendZone was a relatively easy box, but as far as easy boxes go, it had a lot of enumeration and garbage trolls to sort through. In all the enumeration, I’ll find a php page with an LFI, and us...

Driver is an easy rated HTB Windows machine, but it discussed a new techniques in exploiting SMB shares and winRM service in addition to privesc using CVE-2021-34527 - PrintNightmare LPE (PowerSh...

BYUCTF was a CTF organized by CSA - Cybersecurity Student Association during the period of May 27th to May 28th. We proudly got 5th Place among 435 Competing Teams. Web - Wordle Wordle was a...

Networked is an easy rated Linux retired machine, with a white-box pentesting to exploit an upload vulnerability and get user privilege and then exploiting Redhat/CentOS network-scripts vulnerabi...

Poison is a Medium rated FreeBSD retired box, but an enjoyable one with easy user access and good privesc. Let’s get started. Used Tools: Nmap Cyberchef Unzip SSH Wget Linpeas.sh ...

This was an easy Linux box that involved exploiting malicious backdoor that was added to the Unreal IRCD 3.2.8.1 download archive to get initial shell, Then exploiting a custom SUID binary to gai...

Blunder is a Linux machine rated as easy from Hack The Box, it consists on finding credentials to log in to Bludit and then use a RCE exploit to gain an initial shell, then some database files ca...

Valentine is a very unique machine which focuses on the Heartbleed vulnerability, which had devastating impact on systems across the globe. Skills Required: Beginner/Intermediate knowledge of...

Sense, while not requiring many steps to complete, can be challenging for some as it is all about enumeration which takes long time for me then every thing goes easy as we will see. Used Tools: ...