Cerberus - HackTheBox
Una máquina desafiante en la que explotaremos un Icinga Web 2 y abusaremos de Firejail como también de un remote port forwarding.
Posts
Cerberus - HackTheBox
GamingServer - TryHackMe
Can you gain access to this gaming server built by amateurs with no experience of web development and take advantage of the deployment system.
Soccer - HackTheBox
This CTF focuses on success through enumeration.
Escape - HackTheBox
Medium-level machine, where the ‘SQL Server management studio’ tool is exploited, in addition to making use of vulnerable certificates for privilege escalation.
Bagel - HackTheBox
A box of medium difficulty in which concepts such as: Json attacks, code analysis, script creation, etc. are presented.
Opacity - TryHackMe
Opacity is an easy machine that can help you in the penetration testing learning process. There are 2 hash keys located on the machine (user - local.txt and root - proof.txt). Can you find them and become root?
Interface - HackTheBox
A box that sees a lot of fuzzing, plus exploits targeting ‘dompdf’ with relatively easy privilege escalation.
Flight - HackTheBox
Hard box in which the Windows ‘smb’ service is listed, as well as using password cracking techniques, RFI, Port Forwarding, etc.
Sunset Solstice - VulnHub
In this machine, we will learn about LFI (Local File Inclusion) and How to create an exploit or poisoning via apache access.log (apache log poisoning through lfi). For Privilege Escalation is how to change index.php codes to PHP simple reverse shell script on the webserver.
Matrix 1 - VulnHub
Difficulty: Intermediate Flags: Your Goal is to get root and read /root/flag.txt