[HackTheBox] Jerry
Tomcat is a very popular ‘web container’ software. This box teaches one of the vulnerabilities that can be used for RCE using Tomcat’s manager.
rce tomcat metasploit exploit
Recent posts
[HackTheBox] Blue
This machine is more about teaching a single exploit rather than usual HTB process. It is still fun and enjoyable!
exploit metasploit eternalblue
webwrap - An amazing pseudo web shell tool
webwrap is an amazing tool that automates the process of creating a pseudo shell using a page containing a remote command execution.
web ctf shell tool
[HackTheBox] Cronos
Cronos begins with a simple DNS enumeration to find a hidden subdomain with a login page. Then we exploit SQL and command injection vulnerabilities to get a ...
dns sql injection cronjobs
[HackTheBox] Tenten
Tenten starts with very basic enumeration, but it very quickly becomes an interesting box. It requires knowledge of how to use and edit exploits and combines...
wordpress exploit scripting sudo
[HackTheBox] Shocker
Shocker reminded me of my first days in cybersecurity. It is vulnerable to Shellshock which was my first ever vulnerability that I’ve exploited. Root part is...
shellshock sudo perl