Persecure : my learning archive

Category: Hacking

Hackthebox

December 29, 2024

HTB : Builder

Builder is a medium-difficulty Linux machine with a vulnerable Jenkins instance (CVE-2024-23897), allowing unauthenticated users to read arbitrary files. An attacker can extract the jennifer user’s username and password hash, then use these credentials to log into Jenkins. An encrypted SSH key is exploited to gain root access on the host machine. Network Enumeration To…
AD Hacking, Hacking, Vulnlab, Windows

March 18, 2024

Breach

Breach, an Active Directory machine created by xct in vulnlab, employs NTLM hash capture for initial access and utilizes a Silver Ticket attack to gain entry into the network. Enumeration Start a nmap scan to look for open ports and add the necessary flags for in depth enumeration. From the scan we can take note…
AD Hacking, Hacking, Vulnlab, Windows

March 18, 2024

Baby2

Baby2, crafted by xct and & r0BIT in Vulnlab, is an active directory machine designed to investigate misconfigurations in logon scripts and exploit GPO vulnerabilities. Enumeration Start a nmap scan to look for open ports and add the necessary flags for in depth enumeration. From the scan we can take note of the domain name…
AD Hacking, Hacking, Vulnlab, Windows

March 17, 2024

Baby

Baby, an Active Directory machine crafted by xct in vulnlab, facilitates LDAP enumeration and exploits user privileges to retrieve the machine database for hash dumping and exploitation. Enumeration Start a nmap scan to look for open ports and add the necessary flags for in depth enumeration. From the scan we can take note of the…
Hacking, Windows

November 11, 2023

AlwaysInstallElevated

AlwaysInstallElevated, when set to true, grants applications elevated privileges during installation, enabling them to make system-wide changes. Although convenient, enabling AlwaysInstallElevated introduces security risks by permitting potentially malicious applications to make critical modifications to the system. If we gain a shell on a Windows machine, we can elevate our privileges if AlwaysInstallElevated is enabled. We…
AD Hacking, Hacking

October 15, 2023

LLMNR Poisoning

LLMNR poisoning, or Link-Local Multicast Name Resolution poisoning, is a cybersecurity attack that exploits a protocol used in Windows networks by intercepting and manipulating network traffic responsible for resolving domain names to IP addresses. It tricks your computer into sending its requests to the attacker instead of the intended server when you try to access…
TryHackMe, Windows

May 5, 2023

THM : Alfred

Jenkins and Token Impersonation exploit
Hackthebox, Windows

April 29, 2023

HTB : Forest

RPC, GenericALL, WriteDacl exploits
Hackthebox, Windows

April 23, 2023

HTB : Heist

Cisco and Firefox memory dump exploit
Hackthebox, Windows

April 11, 2023

HTB : Blackfield

ForceChangePassword and SeBackupPrivilege exploit
Hackthebox, Windows

April 6, 2023

HTB : Resolute

DnsAdmin group exploit
Hackthebox, Windows

April 3, 2023

HTB : Querier

mssql exploit
Hackthebox, Windows

April 1, 2023

HTB : Bastion

Mount and exploit mRemoteNG
Hackthebox, Windows

March 31, 2023

HTB : Bastard

Drupal 7 and Kernel exploit
Hackthebox, Windows

March 30, 2023

HTB : Artic

ADOBE Coldfusion 8 & MS-059 Exploit
AD Hacking, Hacking, Hackthebox, Persecure, Windows

March 29, 2023

HTB : Access

Telnet & Runas exploit
AD Hacking, Hacking, Hackthebox, Persecure, Windows

March 28, 2023

HTB : Jeeves

Jenkins & Potato Exploit
AD Hacking, Hacking, Hackthebox, Persecure, Windows

March 25, 2023

HTB : SecNotes

WSL exploit
AD Hacking, Hacking, Hackthebox, Persecure, Windows

March 25, 2023

HTB : Chatterbox

Achat Buffer Overflow Exploit
AD Hacking, Hacking, Hackthebox, Persecure, Windows

March 24, 2023

HTB : Devel

MS11-046 Windows kernal exploit