Giddy - Hack The Box
This is the writeup for Giddy, a Windows machine with an interesting twist on SQL injection, PowerShell Web Access and a priv exploiting improper permissions.
sqli powershell
Recent Posts
Ypuffy - Hack The Box
This is the writeup for Ypuffy, an OpenBSD machine from Hack the Box involving a somewhat easy shell access followed by a privesc using CA signed SSH keys.
openbsd ssh pass-the-hash ldap caSecnotes - Hack The Box
This blog post is a writeup of the Hack the Box SecNotes machine from 0xdf.
hackthebox windows sqli wsl csrfOz - Hack The Box
This blog post is a writeup of the Oz machine from Hack the Box.
hackthebox linux sqli ssti containersMischief - Hack The Box
This blog post is a writeup of the Mischief machine from Hack the Box using the unintended LXC container privesc method.
hackthebox linux lxc containers unintendedWaldo - Hack The Box
Linux / 10.10.10.87
hackthebox linux capabilities phpCreating a custom shellcode crypter
For this last SLAE assignment, I’ve created a custom shellcode crypter using the Salsa20 stream cipher. Salsa20 is a family of 256-bit stream ciphers designed in 2005 and submitted to eSTREAM, the ECRYPT Stream Cipher Project.
slae assembly crypter goPolymorphic Linux Shellcode
This blog post shows 3 polymorphic variants of common shellcodes found on shell-storm.org.
slae assembly polymorphicActive - Hack The Box
Windows / 10.10.10.100
hackthebox kerberos adHawk - Hack The Box
Linux / 10.10.10.102
hackthebox drupal