🌟 wither's blog

HackTheBox Machines

HackTheBox - Machines

Comprehensive writeups for HackTheBox machines across Easy, Medium, Hard, and Insane difficulties

Total 169 reports , currently page 1 of 17 (10 per page)

💡 Ctrl + K to quickly focus search box

🔒 Eighteen

Overall, it's a very clunky Active Directory machine, especially in its use of web applications. Using the admin account's password as the universal password is incredibly uninspired.

2025-11-16 05:15 19.2 KB 6 images HTB Easy LOCKED

Bruno

Bruno is a moderately difficult Windows domain machine. The attack chain begins with an insecure ZIP decompression of the service, resulting in a zip-slip that writes a malicious DLL to C:\samples\app...

2025-11-16 05:15 26.1 KB 2 images HTB Medium

🔒 NanoCorp

Overall, it's a very simple machine; both the starting point and the privilege escalation seem to be the expected steps.

2025-11-09 05:32 18.2 KB 6 images HTB Hard LOCKED

Breach

Breach (medium, Windows): guest SMB write access is used to capture NTLMv2 hashes and obtain a low-privileged domain account. A kerberoastable svc_mssql service account is discovered and cracked; with...

2025-11-08 14:57 30.2 KB 1 images HTB Medium

🔒 Giveback

Overall, it's a very classic WordPress to Kubernetes migration machine. While it has some hard-coded elements and a CTF-like design.

2025-11-08 14:57 25.2 KB 10 images HTB Medium LOCKED

Dump

By exploiting the website's PCAP upload/packaging function, malicious wildcards were injected into the zip command to achieve RCE and obtain a shell; the password from the database was used to move to...

2025-11-08 14:57 12.1 KB 6 images HTB Hard

Redelegate

On Redelegate, the attacker first downloaded the KeePass database via anonymous FTP and used the credentials to log into the local MSSQL database. They then performed enumeration and password spraying...

2025-11-08 14:57 33.5 KB 2 images HTB Hard

Store

The system exploits directory traversal through Express file storage to leak files encrypted with weak XOR (9 bytes), decrypts them to obtain SFTP credentials, accesses the host via SFTP, obtains an i...

2025-11-08 14:57 33.0 KB 10 images HTB Hard

Ten

Ten is a misconfigured shared-hosting box: register for FTP, abuse weak MySQL/FTP integration to pivot to a local user, then poison the etcd-driven Apache config reload to gain root.

2025-11-08 14:57 21.6 KB 11 images HTB Hard

🔒 Conversor

In general, it is a very CTF machine, mainly examining code review and the use of Xtensible Stylesheet Language Transformations.

2025-10-28 13:30 12.6 KB 7 images HTB Easy LOCKED
Jump to