PHP Unserialize & Race Condition - Tenet @ HackTheBox • Vulndev

12JunJune 12, 2021

PHP Unserialize & Race Condition – Tenet @ HackTheBox

By xct CTF deserialization, hackthebox, linux, race condition

We are solving Tenet, a 30-point machine HackTheBox that involves a simple PHP deserialization vulnerability, password reuse and a race condition.

xct

27MarMarch 27, 2021

Solving Luanne on HackTheBox. This is an easy 20-point machine involving a simple command injection and some password cracking. read more

24AprApril 24, 2021

We are going to solve Bucket, a medium Linux machine on HackTheBox. We get credentials from DynamoDB, upload a webshell... read more

19JanJanuary 19, 2022

Baby is an easy machine on Vulnlab that involves enumerating LDAP & spraying credentials. For SYSTEM we exploit SeBackup &... read more

04AprApril 4, 2020

Registry is a 40-point machine on HackTheBox that involves interacting with a docker registry to download a docker image and... read more

09OctOctober 9, 2021

We are solving Heist from PG Practice. Heist is a really cool Windows machine that involves stealing a hash, reading... read more

25JanJanuary 25, 2020

AI is a 30 point machine on hackthebox that involves SQL injection via speech and abusing an exposed java debugging... read more

27AprApril 27, 2019

This short write-up is about Irked, a rather easy machine on hackthebox featuring an irc backdoor, some steganography and a... read more

03AugAugust 3, 2019

Safe is an "easy" machine on hackthebox, involving a simple buffer overflow and cracking a keepass file. read more

14AprApril 14, 2019

Kryptos is 50 points machine on hackthebox, involving some interesting techniques, like setting up a fake database and making the... read more

28AugAugust 28, 2021

AuthBy is a medium difficulty Windows machine on PG Practice. It involves getting FTP access to the web root of... read more