Exploiting Gitlab 12.8.1 – Laboratory @ HackTheBox

We are going to solve Atom, a 30-point machine on HackTheBox where we'll analyze an electron app and exploit its... read more

Ghoul is a nice 40 points machine on hackthebox involving zip traversal, lateral movement, public exploits and some obscure hidden... read more

ForwardSlash is a 40-point Linux Machine on HackTheBox. We use a path traversal vulnerability to get ssh credentials and abuse... read more

We are solving Anubis, a 50-point windows machine on HackTheBox which involves an ASP template injection, windows containers, and stealing... read more

Unattended is a high difficulty machine on hackthebox, featuring manual sql injection, log poisoning and some guessing. read more

Solving Reel2 on HackTheBox. This is a 40 point box involving Spraying, Phishing, Sticky Notes and JEA. read more

Monteverde is a 30-point Windows machine on HackTheBox that involves some LDAP and SMB enumeration to get the user flag.... read more

We are solving Vault from PG Practice. This machine involves planting malicious files on an SMB share to steal hashes.... read more

Redcross is a machine on hackthebox.eu, featuring sql injection, cookie reuse and a nice binary exploitation challenge, which I enjoyed... read more

Forest is a 20-point active directory machine on HackTheBox that involves user enumeration, AS-REP-Roasting and abusing Active Directory ACLs to... read more