The difficulty presented by HTB machines can be challenging, frustrating, and rewarding. I think the machine TraceBack provides a perfect balance of all 3 of those qualities into a very fun experience.
The challenge given by Remote will have you breaking into the Umbraco CMS system on multiple levels.
It felt good to spend a day roasting in the Sauna while sharpening the Windows attack skills.
Overall this was a great host for emulating what is commonly seen on real world windows networks in many companies today.
Overall a very straight forward challenge, and a great target to practice the entire attackers methodology.
Walkthru for Postman This is a detailed walk-thru for Postman.htb, written by dR1PPy. A Good Challenge is Presented by Postman, and learning how to attack ReDis Services. Much thanks to TheCyberGeek Enumeration Attacking Redis Server We find the Redis service running on port 6379 We find a working exploit and a few tools to execute…
Walkthru for Traverxec This is a detailed walk-thru for Traverxec, written by dR1PPy. The challenge provided by Traverxec covers a good range exploits chained with bad system administration. In other words it provides a pretty good real world experience. Much thanks to jkr for the challenge. Enumeration We start with our standard NMAP scan and…
Walkthru for JSON.htb This is a detailed walk-thru for JSON.htb written by dR1PPy JSON was a very fun machine for attacking vulnerable serialization services. This challenge has a very real world feel and was a great overall experience. Much thanks to Cyb3rb0b for putting this challenge together, also for the clever nameplay based on the…