Home » Tags

Pentest

CCTV, Easy Linux machine cover

CCTV Writeup - HackTheBox

CCTV, an easy Linux machine that exposes a real-world camera management stack where default credentials open the door and a misconfigured service hands you root.

March 19, 2026 · 8 min · 1531 words · tomato
Pirate, Hard Windows machine cover

Pirate Writeup - HackTheBox

Pirate, a hard level Windows machine that throws you into a multi-segment Active Directory environment where every step forward requires digging deeper into how Windows authentication actually works and how to break it.

March 19, 2026 · 21 min · 4299 words · tomato
Interpreter, Medium Linux machine cover

Interpreter Writeup - HackTheBox

Interpreter, a medium level Linux machine where you exploit a known Mirth Connect RCE, crack hashes and abuse a SSTI vulnerability to reach root.

March 5, 2026 · 12 min · 2499 words · david (tomato)
Planning, Easy Linux machine cover

Planning Writeup - HackTheBox

Planning, an easy level Linux machine exploiting a Grafana RCE CVE, escaping Docker via leaked SSH creds, and abusing a cron web panel to execute commands as root.

May 12, 2025 · 4 min · 754 words · david (tomato)
Scepter, Hard Windows machine cover

Scepter Writeup - HackTheBox

Scepter, a hard level Windows machine where two chained ADCS misconfigurations are the heart of the box, with some certificate cracking and BloodHound enumeration to set the stage.

May 12, 2025 · 12 min · 2385 words · david (tomato)
Environment, Medium Linux machine cover

Environment Writeup - HackTheBox

Environment, a medium level Linux machine chaining a Laravel auth bypass CVE, a file upload filter bypass for RCE, and a BASH_ENV sudo misconfiguration to reach root.

May 5, 2025 · 6 min · 1252 words · david (tomato)