hackthebox
Armageddon
· ☕ 6 min read · ✍️ T4r0
Drupal, Drupalgeddon, Restricted shell, Dumping database, Password cracking, Snap, Dirty sock

Ophiuchi
· ☕ 10 min read · ✍️ T4r0
Yaml deserialization, Java shell, Tomcat password, sudo -l, Go

Spectra
· ☕ 4 min read · ✍️ T4r0
Chrome OS, Wordpress, sudo -l, Directory listing

Delivery
· ☕ 4 min read · ✍️ T4r0
Helpdesk, Mattermost, Ticketing trick, Internal chat, SQL enumeration, Hashcat rules, Hash cracking

ScriptKiddie
· ☕ 5 min read · ✍️ T4r0
CVE-2020-7384, msfvenom command injection, script command injection

Laboratory
· ☕ 9 min read · ✍️ T4r0
Gitlab, Arbitary file read, RCE, SUID, PATH exploitation

Luanne
· ☕ 7 min read · ✍️ T4r0
Lua, API, Command injection, Password cracking, File decrypt

Passage
· ☕ 6 min read · ✍️ T4r0
Cute news, CVE, File system enumeration, Insecure ssh, USBcreator