Hackthebox - Busqueda
Initial EnumerationPort Scan1234567891011121314151617181920212223# Nmap 7.93 scan initiated Sun Apr 9 06:00:10 2023 as: nmap -sC -sV -oN nmap/busque ...
Read more
HacktheBox - Agile
Hackthebox - Agile Initial Enumerationnmap1234567891011121314151617# Nmap 7.93 scan initiated Sat Mar 11 00:29:44 2023 as: nmap -sC -sV -oN nmap/agile ...
Read more
HackTheBox - Socket
Hackthebox - Socket Initial Enumeration12345678910111213141516# Nmap 7.93 scan initiated Mon Mar 27 12:01:06 2023 as: nmap -sC -sV -oN nmap/socket soc ...
Read more
HacktheBox - Inject
HacktheBox - InjectAuthor: gotNothingHere Initial EnumerationWebWe find LFI on Leak on proc fd Checking the Entrypoint file we see it is a SpringA ...
Read more
Hackthebox - Stocker



Stocker is a medium difficulty Linux machine that features a website running on port 80 that advertises
various house furniture. Through vHost enumeration the hostname dev.stocker.htb is identified and
upon accessing it a login page is loaded that seems to be built with NodeJS . By sending JSON data and
performing a NoSQL injection, the login page is bypassed and access to an e-shop is granted. Enumeration
of this e-shop reveals that upon submitting a purchase order, a PDF is crafted that contains details about
the items purchased. This functionality is vulnerable to HTML injection and can be abused to read system
files through the usage of iframes. The index.js file is then read to acquire database credentials and owed
to password re-use users can log into the system over SSH . Privileges can then be escalated by performing
a path traversal attack on a command defined in the sudoers file, which contains a wildcard for executing
JavaScript files.

Read more