HackTheBox Feline

0x0 Introduction

The first hard box that I have ever pwned, so lets dive right into it. This box involved a java deserialization attack to first get an inital foothold, once we are on it we use a known exploit in saltstack to become root of docker container, now you might wonder: Why would we want to become root of a docker-container? Well this docker container also had a miss configuration issue which then allowed us to mount files from the host system, such as the root.txt, into the container. image

Read More

Malware Analysis - unpacking GlobeImposter Ransomware

0x0 Introduction

In this post I’m going to show you how to extract the real executeable, that is the actual malware, from a packed sample of the GlobeImposter Ransomware.
If you read the last post in my ‘Malware analysis’ series than you should already have a basic understanding of what a packed executeable is. If not than please go and read that one first, other wise this might not make all that much sense to you.

Read More

Malware Analysis - Packing

0x0 Introduction

In this series of Blog Posts about Malware Analysis I will take a closer look at common techniques and tricks used by Malicious Software and analyse different Malware samples. This first post will focus on packing or executeable compression, a technique often used by malware to hide it’s malicious code from security-software and researchers.

Read More

HackTheBox Sauna

0x0 Introduction

Welcome to another HackTheBox writeup, in this one we have to enumerate users, make heavy use of impacket scripts to kerberoast one of the users and we utilize winpeas to escalate our privileges. image

Read More

HackTheBox ServMon

0x0 Introduction

Yet another Windows box. In this one we use anonymous ftp access to find out about the existens of some internal files and then abuse a path traversal vulnerability to get hold of these files. Once we are on the box we use an exploit for NSClient++ to escalate privileges to System. image

Read More

HackTheBox Resolute

0x0 Introduction

This was a medium Windows Box, featuring rpcclient, default Passwords and a dll injection. This one took me quite a bit of time as I am not that used to working with Windows maschines and I learned a lot from this one. image

Read More