Pentesting write-ups

You can find here my write-ups about some of the boxes I encounter during my learning and training.

• 
  HTB – Resolute – Windows (Medium)December 11, 2024
  In this machine from Hack The Box, we are going to talk about Active Directory, password spraying and DNS, let’s dive in ! Initial scan… Read more: HTB – Resolute – Windows (Medium)
• 
  HTB – Perfection – Linux (Easy)March 25, 2024
  This Linux boxe involves SSTI, filtering bypass and password cracking, let’s dig in ! Scan The initial nmap scan does not show much open ports,… Read more: HTB – Perfection – Linux (Easy)
• 
  HTB – Manager – Windows (Medium)March 9, 2024
  This time it will be a domain controller Windows machine, with MSSQL and some ADCS exploitation, which was very informative. Initial scan As usual we… Read more: HTB – Manager – Windows (Medium)
• 
  HTB – Surveillance – Linux (Medium)February 20, 2024
  This Linux machine is going to involve some CVE exploitation, port forwarding and find a vulnerability from a bunch of Perl scripts. Initial scan During… Read more: HTB – Surveillance – Linux (Medium)
• 
  HTB – Codify – Linux (Easy)February 10, 2024
  On this Linux machine we are going to play with some CVE in Javascript, password cracking and exploit a flawed string comparison in a script.… Read more: HTB – Codify – Linux (Easy)