Magic Writeup (HackTheBox)
Starts off with some SQL injection, upgrading a shell to an interactive TTY and a little bit of reverse engineering.
2020, May 07 — 11 minute readStarts off with some SQL injection, upgrading a shell to an interactive TTY and a little bit of reverse engineering.
2020, May 07 — 11 minute readUses RCE exploitation, password reuse, SSH port forwarding, passphrase bruteforcing and a cute privilege escalation method.
2020, May 04 — 9 minute readAS-REP roasting, using WinRM to run Bloodhound, then utilizing DCSync rights to retrieve an NTLM hash and run PSExec.
2020, Apr 26 — 9 minute readAnonymous FTP access, directory traversal vulnerability to read remote files followed by a privilege escalation via locally accessible API.'
2020, Apr 23 — 7 minute read