-
Solve a GEOINT challenge with your brain – #ThursdayQuiz
Lire plus: Solve a GEOINT challenge with your brain – #ThursdayQuizHi everyone! In this blog post, we’ll see an example of how to solve an interesting GEOINT challenge based on observations from a photo, without using any reverse image search tools or IA things. Only our marvellous brain. This challenge is proposed by Sector035 on his Twitter account. I encourage you to first try yourself…
-
APT Hunter CTF – Writeup
Lire plus: APT Hunter CTF – WriteupLe week-end du 27 mars 2024 a débuté le CTF APT Hunter organisé par des étudiants de l’école AIX YNOV CAMPUS. Ce CTF consistait en un ensemble de 40 challenges qui touchaient différents domaines allant du GEOINT, au SOCMINT en passant par de l’investigation de cryptomonnaie et NFTs. Nous avons terminé 4ème avec notre équipe…
-
💻 Mirai – Writeup
Lire plus: 💻 Mirai – WriteupDefault credentials we’ll be used on this machine to access it. Add the IP address in /etc/hosts: … 10.10.10.48 mirai.htb … First run a nmap scan: A lot of ports are open contrary to the other easy boxes. Let’s start with the website: It tells us that the machine is a Pi-hole version 3.1.4. We…
-
💻 Knife – Writeup
Lire plus: 💻 Knife – WriteupA backdoor is found on the web server of this machine. Add the IP address in /etc/hosts: … 10.10.10.242 knife.htb … First run a nmap scan: The website doesn’t give us anything useful: In the source code there is no link. Looking at Wappalyzer we get some versions: Apache 2.4.41 PHP 8.1.0 There is no…
-
💻 Jerry – Writeup
Lire plus: 💻 Jerry – WriteupWe’ll exploit a Tomcat functionnality to become Administrator of this Windows machine. Add the IP address in /etc/hosts: … 10.10.10.95 jerry.htb … First run a nmap scan: There is only one port open: We can search on Google for an exploit related to this version: There’s an ExploitDB exploit for this version. Let’s see if…
-
💻 Granny – Writeup
Lire plus: 💻 Granny – WriteupThis Windows machine looks a lot like another machine… Add the IP address in /etc/hosts: … 10.10.10.15 granny.htb … First run a nmap scan: We can run a directory fuzzing but nothing interesting is found: Here is the only page accessible on the website: This is a webdav server and there is a tool to…
-
💻 Grandpa – Writeup
Lire plus: 💻 Grandpa – WriteupIn this machine we’ll exploit a kernel vulnerability to become Administrator. Add the IP address in /etc/hosts: … 10.10.10.14 grandpa.htb … First run a nmap scan: There is only one port open which is an HTTP service on port 80. It is detected as being a Windows machine running Microsoft IIS httpd 6.0. We can…
Tag: writeup
Articles récents
Tags
boat challenge cody credentials crypto ctf cve easy embed exif exploit geoint geolocation google google lense gralhix hacking hacktoria htb iis intelligence kernel linux location manipulation maps metadata metasploit metaverse mondayquiz osint php redirection reverse search social engineering social media socmint sofia santos street view thursdayquiz web web3 wifi windows writeup