Obscurity @ HackTheBox

Solving Passage on HackTheBox. This is an easy box involving 2 public exploits, one for the CuteNews CMS and one... read more

My video about Spectra, a 20-point machine on HackTheBox that involves admin access to a WordPress site, allowing us to... read more

Player is a hard box, that we solved in unintended ways that are partly patched now. read more

We are solving Crossfit2, a 50-point OpenBSD machine on HackTheBox. read more

We are solving Pivotapi, a 50-point Windows machine on HackTheBox. This one involves some Reverse Engineering, MSSQL, and Active Directory... read more

OpenAdmin is a 20-Point Linux machine on HackTheBox that involves using a public exploit for OpenNetAdmin & abusing a sudo... read more

In this short writeup I will show how I completed Access on hackthebox.eu, a quite easy windows box that involves... read more

We are solving Cereal, a 40-point machine on HackTheBox. For user, we will exploit a pretty tricky deserialization vulnerability in... read more

This short write-up is about Irked, a rather easy machine on hackthebox featuring an irc backdoor, some steganography and a... read more

Json is a 30-point system on HackTheBox that involves exploiting a .NET deserialization vulnerability and has multiple ways for privilege... read more