Writeup author : Hicham Terkiba (@IOBreaker) Try Hack Me – Box Description : This is a memory dump of compromised system, do some forensics kung-fu to explore the inside Level : Medium I downloaded the zip file which is the entry point. First, I checked if the md5 hash is Read more…
Writeup author : Hicham Terkiba (@IOBreaker) Box Description: Hosted on : Hack The Box Level : Medium This CTF is a windows machine, more specifically, an active directory domain controller! Exploitation : Important finding : 88/tcp open kerberos-sec syn-ack ttl 127 Microsoft Windows Kerberos 1433/tcp open ms-sql-s syn-ack ttl 127 Read more…
Writeup author : Hicham Terkiba (@IOBreaker) I started doing some recons with rustscan to speed up the process I got some useful information Open 10.129.13.163:22 Open 10.129.13.163:8000 http://jewel.htb:8000/gitweb/ Open 10.129.13.163:8080 http://jewel.htb:8080 I fired up a web browser to see what it looks like : Robots.txt The blog From the blog Read more…
Writeup author : Hicham Terkiba (@IOBreaker) Try Hack Me – Box Description : These challenges are aimed towards learning about the “Static Analysis” technique used to analyse the malware. The main aim for this room is not to used any types of debuggers neither the executable’s/programs should be run on Read more…
Writeup author : Hicham Terkiba (@IOBreaker) Try Hack Me – Box Description : The machine is completely inspired by real world pentest findings. Perhaps you will consider them very challenging but without any rabbit holes. Once you have a shell it is very important to know which underlying linux distribution Read more…
Writeup author : Hicham Terkiba (@IOBreaker) Try Hack Me – Box Description : Well, the flaw that makes up this box is the reproduction found in the production environment of a customer a while ago, the verification in season consisted of two steps, the last one within the environment, we Read more…
Writeup author : Hicham Terkiba (@IOBreaker) In some file you can see sometime a “…..” in place of characters, this is done to avoid ‘flag’ information disclosure As usual, let’s do some port and service probing with nmap scan As you can see, we are in front of a Windows Read more…
Writeup author : Hicham Terkiba (@IOBreaker) In some file you can see sometime a “…..” in place of characters, this is done to avoid ‘flag’ information disclosure As usual, let’s do some port and service probing with nmap Ok, so : Domain is craft.htb 22 OpenSSH 7.4p1, 443 nginx 1.15.8 Read more…