-
💻 Explore – Writeup
Lire plus: 💻 Explore – WriteupDuring this easy Android machine, we’ll exploit a known CVE. Add the IP address in /etc/hosts: … 10.10.10.247 explore.htb … First run a nmap scan: I cut a part of the output because the rest was garbage. The SSH banner, gives us a good hint to find the Android product: Banana Studio. A quick search…
-
💻 Devel – Writeup
Lire plus: 💻 Devel – WriteupIn this easy Windows machine, we’ll exploit a misconfiguration to become Administrator. Add the IP address in /etc/hosts: … 10.10.10.5 devel.htb … First run a nmap scan: Default web page: There is a FTP server running on port 21. We can connect to it as anonymous user. There is nothing interesting on it but we…
-
👽 Hacktoria – Florida Snow
Lire plus: 👽 Hacktoria – Florida SnowIn this challenge we start from a satellite view to identify the exact location of this place. Link: https://hacktoria.com/contracts/florida-snow/ Briefing hints: Mostly towards Spain and France And that’s all… Here is the original satellite image given for this contract: We can point some interesting things from this image: Taken from https://satellites.pro (red cross in the…
-
👽 Hacktoria – The Cartel Connection
Lire plus: 👽 Hacktoria – The Cartel ConnectionIn the old Hacktoria challenge, we try to find the location of a Colombian cartel. Link: https://hacktoria.com/contracts/the-cartel-connection/ Briefing hints: National Police of Colombia yesterday afternoon at 14:37 Colombia Standard Time coastal regions Analyze There is a ship on the left but can’t identify it’s name. On the bottom, we can see something similar to rails.…
-
👽 Hacktoria – The Killer Clown
Lire plus: 👽 Hacktoria – The Killer ClownThis Hacktoria challenge was an old OSINT challenged available on their website. Link: https://hacktoria.com/contracts/the-killer-clown/ Verify we are in San Francisco: We know the victim lived near Northwest Berkeley in San Francisco. So we can check the potential parks in this area: After searching the parks, I found one that can correspond to our photo: There…
-
👽 Hacktoria – Where’s Klumgongyn
Lire plus: 👽 Hacktoria – Where’s KlumgongynThis writeup is related to an old Hacktoria challenge which is no longer accessible. Link: https://hacktoria.com/contracts/wheres-klumgongyn/ We don’t have any other information than the photo. There are multiple ways to find this location. I took the fastest one. Search on Google: my taxi 6882122 and found a Facebook page: https://www.facebook.com/groups/879392425455230/ So we know the city…
-
💻 Cap – Writeup
Lire plus: 💻 Cap – WriteupThe name of the easy Linux box gives us useful hints… Add the hostname into /etc/hosts: … 10.10.10.245 cap.htb … First run a nmap scan to detect open ports: The nmap scan output is way too long so we’ll just focus on the important parts. The FTP server is not accessible using anonymous login and…
-
💻 Buff – Writeup
Lire plus: 💻 Buff – WriteupIn this easy Windows machine we’ll exploit a buffer overflow! Add the IP address in /etc/hosts: … 10.10.10.198 blue.htb … First run a nmap scan: We add the -Pn option to nmap because this is a Windows machine and the ICMP protocol is filtered. So nmap cannot tell if the host is up or not.…
-
💻 Beep – Writeup
Lire plus: 💻 Beep – WriteupThis Linux machine is a bit special compared to other Linux challenges because this is a CentOS operating system. Add the IP address in /etc/hosts: … 10.10.10.7 beep.htb … First run a nmap scan: There is a lot of open ports on this machine. But most of them could be rabbit holes. If you have…
Tag: writeup
Articles récents
Tags
boat challenge cody credentials crypto ctf cve easy embed exif exploit geoint geolocation google google lense gralhix hacking hacktoria htb iis intelligence kernel linux location manipulation maps metadata metasploit metaverse mondayquiz osint php redirection reverse search social engineering social media socmint sofia santos street view thursdayquiz web web3 wifi windows writeup