Vulnlab — RedelegateRedelegate, an AD machine from Vulnlab involved enumerating ftp to find a keepass database file and password format, cracking the file…Dec 4, 2024Dec 4, 2024
HackTheBox — MistMist an insane difficult machine involved an instance of pluck being vulnerable to both local file inclusion (LFI) and remote code…Oct 28, 2024Oct 28, 2024
Vulnlab — CicadaCicada is a standalone windows machine enabled with only kerberos authentication that involved enumerating NFS share to find domain…Oct 13, 2024Oct 13, 2024
Vulnlab — HeronHeron from vulnlab, had a linux jump server access to domain controller, using chisel for socks proxy, enumerating the internal website…Oct 4, 2024Oct 4, 2024
Vulnlab — TenguTengu, a medium rated chained machine from vulnlab consisting of two windows and one linux host, had an instance node-red running on linux…Sep 19, 2024Sep 19, 2024
Vulnlab — PhantomPhantom involved enumerating shares to find an email with a password, enumerating domain users by bruteforcing SIDs, password spraying to…Jul 22, 2024Jul 22, 2024
Vulnlab — KlendathuKlendathu, an insane rated machine involved enumerating nfs share containing a configuration file with password hash of domain user, this…Jul 9, 2024Jul 9, 2024
Vulnlab — LockLock is a basic windows machine which involved enumerating the gitea repository to find a Personal Access Token (PAT), through which it…Jul 1, 2024Jul 1, 2024
Vulnlab — SendaiSendai involved enumerating usernames through smb shares having password expired, resetting their password, belonging to Support group they…May 10, 2024May 10, 2024
Vulnlab — VigilantVigilant a hard rated chained machine involved enumerating smb shares to find an encrytped pdf file, analyzing the ADAudit dll file to…Apr 30, 2024Apr 30, 2024
