Writeups
HackTheBox
| Title | OS | Tags |
|---|---|---|
| HackTheBox - Active (Windows) | Windows | hackthebox windows enum4linux netexec kerbrute ldap-enum rpc-enum smb-enum dictionary-attack samba smb winrm kerberoasting gpp-decrypt sysvol |
| HackTheBox - Active (Windows) | Windows | hackthebox windows enum4linux netexec kerbrute ldap-enum rpc-enum smb-enum dictionary-attack samba smb winrm kerberoasting gpp-decrypt sysvol |
| HackTheBox - Broker (Linux) | Linux | hackthebox linux nikto deserialization apache nginx mysql vsftpd ftp ssh sudo suid sgid linux-capabilities cron |
| HackTheBox - Broker (Linux) | Linux | hackthebox linux nikto deserialization apache nginx mysql vsftpd ftp ssh sudo suid sgid linux-capabilities cron |
| HackTheBox - Codify (Linux) | Linux | hackthebox linux hydra brute-force dictionary-attack apache mysql ssh sudo suid cron cve-2023-37466 web privilege-escalation pentest |
| HackTheBox - Codify (Linux) | Linux | hackthebox linux hydra brute-force dictionary-attack apache mysql ssh sudo suid cron cve-2023-37466 web privilege-escalation pentest |
| HackTheBox - CozyHosting (Linux) | Linux | hackthebox linux feroxbuster nginx ssh suid web privilege-escalation pentest |
| HackTheBox - CozyHosting (Linux) | Linux | hackthebox linux feroxbuster nginx ssh suid web privilege-escalation pentest |
| HackTheBox - Editor (Linux) | Linux | hackthebox linux nginx ssh suid kernel-exploit cve-2025-24893 cve-2024-32019 web privilege-escalation pentest |
| HackTheBox - Editor (Linux) | Linux | hackthebox linux nginx ssh suid kernel-exploit cve-2025-24893 cve-2024-32019 web privilege-escalation pentest |
| HackTheBox - Fluffy (Windows) | Windows | hackthebox windows netexec rpc-enum smb-enum dictionary-attack samba smb evil-winrm winrm as-rep-roasting bloodhound active-directory certipy adcs |
| HackTheBox - Fluffy (Windows) | Windows | hackthebox windows netexec rpc-enum smb-enum dictionary-attack samba smb evil-winrm winrm as-rep-roasting bloodhound active-directory certipy adcs |
| HackTheBox - Forest (Windows) | Windows | hackthebox windows enum4linux rpc-enum smb-enum smb winrm bloodhound active-directory dcsync sudo suid privilege-escalation pentest |
| HackTheBox - Forest (Windows) | Windows | hackthebox windows enum4linux rpc-enum smb-enum smb winrm bloodhound active-directory dcsync sudo suid privilege-escalation pentest |
| HackTheBox - Help (Linux) | Linux | hackthebox linux feroxbuster nikto dictionary-attack apache ssh hash-cracking hashcat suid linux-capabilities cve-2003-1418 cve-2017-16995 web privilege-escalation |
| HackTheBox - Help (Linux) | Linux | hackthebox linux feroxbuster nikto dictionary-attack apache ssh hash-cracking hashcat suid linux-capabilities cve-2003-1418 cve-2017-16995 web privilege-escalation |
| HackTheBox - Jarvis (Linux) | Linux | hackthebox linux sqlmap sql-injection apache mysql ssh sudo suid cron web privilege-escalation pentest |
| HackTheBox - Jarvis (Linux) | Linux | hackthebox linux sqlmap sql-injection apache mysql ssh sudo suid cron web privilege-escalation pentest |
| HackTheBox - Keeper (Linux) | Linux | hackthebox linux nginx ssh suid web privilege-escalation pentest |
| HackTheBox - Keeper (Linux) | Linux | hackthebox linux nginx ssh suid web privilege-escalation pentest |
| HackTheBox - Legacy (Windows) | Windows | hackthebox windows enum4linux rpc-enum smb-enum smb ms17-010 eternalblue sudo suid cve-2008-4250 cve-2017-0143 privilege-escalation pentest |
| HackTheBox - Legacy (Windows) | Windows | hackthebox windows enum4linux rpc-enum smb-enum smb ms17-010 eternalblue sudo suid cve-2008-4250 cve-2017-0143 privilege-escalation pentest |
| HackTheBox - MetaTwo (Linux) | Linux | hackthebox linux feroxbuster nikto wpscan wordpress dictionary-attack sqlmap sql-injection xxe apache nginx mysql vsftpd ftp |
| HackTheBox - MetaTwo (Linux) | Linux | hackthebox linux feroxbuster nikto wpscan wordpress dictionary-attack sqlmap sql-injection xxe apache nginx mysql vsftpd ftp |
| HackTheBox - Nibbles (Linux) | Linux | hackthebox linux feroxbuster whatweb hydra brute-force file-upload apache ssh sudo suid metasploit cve-2015-6967 web privilege-escalation |
| HackTheBox - Nibbles (Linux) | Linux | hackthebox linux feroxbuster whatweb hydra brute-force file-upload apache ssh sudo suid metasploit cve-2015-6967 web privilege-escalation |
| HackTheBox - Pilgrimage (Linux) | Linux | hackthebox linux nginx imagemagick ssh suid searchsploit cve-2022-44268 cve-2022-4510 web privilege-escalation pentest |
| HackTheBox - Pilgrimage (Linux) | Linux | hackthebox linux nginx imagemagick ssh suid searchsploit cve-2022-44268 cve-2022-4510 web privilege-escalation pentest |
| HackTheBox - Poison (Linux) | Linux | hackthebox linux feroxbuster hydra brute-force apache ssh suid cron web privilege-escalation pentest |
| HackTheBox - Poison (Linux) | Linux | hackthebox linux feroxbuster hydra brute-force apache ssh suid cron web privilege-escalation pentest |
| HackTheBox - Sau (Linux) | Linux | hackthebox linux feroxbuster ssh sudo suid cron kernel-exploit ligolo pivoting cve-2023-27163 web privilege-escalation pentest |
| HackTheBox - Sau (Linux) | Linux | hackthebox linux feroxbuster ssh sudo suid cron kernel-exploit ligolo pivoting cve-2023-27163 web privilege-escalation pentest |
| HackTheBox - Sea (Linux) | Linux | hackthebox linux whatweb dictionary-attack xss apache ssh hash-cracking suid searchsploit web privilege-escalation pentest |
| HackTheBox - Sea (Linux) | Linux | hackthebox linux whatweb dictionary-attack xss apache ssh hash-cracking suid searchsploit web privilege-escalation pentest |
| HackTheBox - SolidState (Linux) | Linux | hackthebox linux apache ssh hash-cracking suid cve-2015-7611 web privilege-escalation pentest |
| HackTheBox - SolidState (Linux) | Linux | hackthebox linux apache ssh hash-cracking suid cve-2015-7611 web privilege-escalation pentest |
| HackTheBox - Sunday (Linux) | Linux | hackthebox linux hydra brute-force dictionary-attack apache mysql ftp ssh hash-cracking sudo suid web privilege-escalation pentest |
| HackTheBox - Sunday (Linux) | Linux | hackthebox linux hydra brute-force dictionary-attack apache mysql ftp ssh hash-cracking sudo suid web privilege-escalation pentest |
| HackTheBox - Tabby (Linux) | Linux | hackthebox linux medusa brute-force dictionary-attack lfi tomcat apache mysql ssh hash-cracking suid lxd-escape msfvenom web |
| HackTheBox - Tabby (Linux) | Linux | hackthebox linux medusa brute-force dictionary-attack lfi tomcat apache mysql ssh hash-cracking suid lxd-escape msfvenom web |
| HackTheBox - TartarSauce (Linux) | Linux | hackthebox linux apache phpmyadmin suid web privilege-escalation pentest |
| HackTheBox - TartarSauce (Linux) | Linux | hackthebox linux apache phpmyadmin suid web privilege-escalation pentest |
| HackTheBox - UpDown (Linux) | Linux | hackthebox linux apache ftp ssh suid git-dump web privilege-escalation pentest |
| HackTheBox - UpDown (Linux) | Linux | hackthebox linux apache ftp ssh suid git-dump web privilege-escalation pentest |
Proving Grounds
| Title | OS | Tags |
|---|---|---|
| Proving Grounds - Access (Windows) | Windows | proving-grounds oscp windows gobuster dictionary-attack file-upload apache mssql winrm kerberoasting samaccountname-spoofing hash-cracking hashcat dll-hijacking msfvenom |
| Proving Grounds - Access (Windows) | Windows | proving-grounds oscp windows gobuster dictionary-attack file-upload apache mssql winrm kerberoasting samaccountname-spoofing hash-cracking hashcat dll-hijacking msfvenom |
| Proving Grounds - Algernon (Windows) | Windows | proving-grounds oscp windows iis ftp cve-2019-7214 web pentest |
| Proving Grounds - Algernon (Windows) | Windows | proving-grounds oscp windows iis ftp cve-2019-7214 web pentest |
| Proving Grounds - Amaterasu (Linux) | Linux | proving-grounds oscp linux feroxbuster file-upload ssh suid cron web privilege-escalation pentest |
| Proving Grounds - Amaterasu (Linux) | Linux | proving-grounds oscp linux feroxbuster file-upload ssh suid cron web privilege-escalation pentest |
| Proving Grounds - Apex (Windows) | Windows | proving-grounds oscp windows smb-enum mysql samba smb ssh suid privilege-escalation pentest |
| Proving Grounds - Apex (Windows) | Windows | proving-grounds oscp windows smb-enum mysql samba smb ssh suid privilege-escalation pentest |
| Proving Grounds - Astronaut (Linux) | Linux | proving-grounds oscp linux feroxbuster csrf wordpress ssh suid cron kernel-exploit metasploit web privilege-escalation pentest |
| Proving Grounds - Astronaut (Linux) | Linux | proving-grounds oscp linux feroxbuster csrf wordpress ssh suid cron kernel-exploit metasploit web privilege-escalation pentest |
| Proving Grounds - AuthBy (Windows) | Windows | proving-grounds oscp windows dictionary-attack apache ftp hash-cracking reverse-shell cve-2011-1249 web pentest |
| Proving Grounds - AuthBy (Windows) | Windows | proving-grounds oscp windows dictionary-attack apache ftp hash-cracking reverse-shell cve-2011-1249 web pentest |
| Proving Grounds - BBScute (Linux) | Linux | proving-grounds oscp linux ssh sudo suid cron kernel-exploit privilege-escalation pentest |
| Proving Grounds - BBScute (Linux) | Linux | proving-grounds oscp linux ssh sudo suid cron kernel-exploit privilege-escalation pentest |
| Proving Grounds - Billyboss (Windows) | Windows | proving-grounds oscp windows iis ftp seimpersonate potato-attack searchsploit reverse-shell cve-2020-10199 web privilege-escalation pentest |
| Proving Grounds - Billyboss (Windows) | Windows | proving-grounds oscp windows iis ftp seimpersonate potato-attack searchsploit reverse-shell cve-2020-10199 web privilege-escalation pentest |
| Proving Grounds - BitForge (Linux) | Linux | proving-grounds oscp linux webshell mysql sudo suid cve-2024-27115 web privilege-escalation pentest |
| Proving Grounds - BitForge (Linux) | Linux | proving-grounds oscp linux webshell mysql sudo suid cve-2024-27115 web privilege-escalation pentest |
| Proving Grounds - BlackGate (Linux) | Linux | proving-grounds oscp linux redis sudo suid linpeas kernel-exploit cve-2021-4034 privilege-escalation pentest |
| Proving Grounds - BlackGate (Linux) | Linux | proving-grounds oscp linux redis sudo suid linpeas kernel-exploit cve-2021-4034 privilege-escalation pentest |
| Proving Grounds - Blogger (Linux) | Linux | proving-grounds oscp linux wpscan wordpress apache mysql suid cron web privilege-escalation pentest |
| Proving Grounds - Blogger (Linux) | Linux | proving-grounds oscp linux wpscan wordpress apache mysql suid cron web privilege-escalation pentest |
| Proving Grounds - Boolean (Linux) | Linux | proving-grounds oscp linux feroxbuster suid web privilege-escalation pentest |
| Proving Grounds - Boolean (Linux) | Linux | proving-grounds oscp linux feroxbuster suid web privilege-escalation pentest |
| Proving Grounds - Bratarina (Windows) | Windows | proving-grounds oscp windows netexec smb-enum postgresql samba smb ssh suid searchsploit cve-2020-7247 privilege-escalation pentest |
| Proving Grounds - Bratarina (Windows) | Windows | proving-grounds oscp windows netexec smb-enum postgresql samba smb ssh suid searchsploit cve-2020-7247 privilege-escalation pentest |
| Proving Grounds - BTRSys2.1 (Linux) | Linux | proving-grounds oscp linux wpscan wordpress dictionary-attack mysql vsftpd ftp ssh suid web privilege-escalation pentest |
| Proving Grounds - BTRSys2.1 (Linux) | Linux | proving-grounds oscp linux wpscan wordpress dictionary-attack mysql vsftpd ftp ssh suid web privilege-escalation pentest |
| Proving Grounds - bullyBox (Linux) | Linux | proving-grounds oscp linux feroxbuster ssti mysql sudo suid git-dump cve-2022-3552 web privilege-escalation pentest |
| Proving Grounds - bullyBox (Linux) | Linux | proving-grounds oscp linux feroxbuster ssti mysql sudo suid git-dump cve-2022-3552 web privilege-escalation pentest |
| Proving Grounds - Butch (Windows) | Windows | proving-grounds oscp windows smb-enum iis smb ftp web pentest |
| Proving Grounds - Butch (Windows) | Windows | proving-grounds oscp windows smb-enum iis smb ftp web pentest |
| Proving Grounds - ClamAV (Linux) | Linux | proving-grounds oscp linux apache samba smb clamav ssh suid searchsploit web privilege-escalation pentest |
| Proving Grounds - ClamAV (Linux) | Linux | proving-grounds oscp linux apache samba smb clamav ssh suid searchsploit web privilege-escalation pentest |
| Proving Grounds - Clue (Windows) | Windows | proving-grounds oscp windows feroxbuster smb-enum smb ftp ssh suid metasploit searchsploit web privilege-escalation pentest |
| Proving Grounds - Clue (Windows) | Windows | proving-grounds oscp windows feroxbuster smb-enum smb ftp ssh suid metasploit searchsploit web privilege-escalation pentest |
| Proving Grounds - Cockpit (Linux) | Linux | proving-grounds oscp linux mysql cockpit sudo suid web privilege-escalation pentest |
| Proving Grounds - Cockpit (Linux) | Linux | proving-grounds oscp linux mysql cockpit sudo suid web privilege-escalation pentest |
| Proving Grounds - Codo (Linux) | Linux | proving-grounds oscp linux file-upload webshell ssh suid searchsploit web privilege-escalation pentest |
| Proving Grounds - Codo (Linux) | Linux | proving-grounds oscp linux file-upload webshell ssh suid searchsploit web privilege-escalation pentest |
| Proving Grounds - Craft (Windows) | Windows | proving-grounds oscp windows apache responder llmnr-poisoning web pentest |
| Proving Grounds - Craft (Windows) | Windows | proving-grounds oscp windows apache responder llmnr-poisoning web pentest |
| Proving Grounds - Craft2 (Windows) | Windows | proving-grounds oscp windows smb-enum dictionary-attack apache mysql smb responder llmnr-poisoning hash-cracking hashcat suid chisel pivoting |
| Proving Grounds - Craft2 (Windows) | Windows | proving-grounds oscp windows smb-enum dictionary-attack apache mysql smb responder llmnr-poisoning hash-cracking hashcat suid chisel pivoting |
| Proving Grounds - Crane (Linux) | Linux | proving-grounds oscp linux sudo suid cve-2022-23940 privilege-escalation pentest |
| Proving Grounds - Crane (Linux) | Linux | proving-grounds oscp linux sudo suid cve-2022-23940 privilege-escalation pentest |
| Proving Grounds - CVE-2023-6019 (Linux) | Linux | proving-grounds oscp linux suid git-dump cve-2023-6019 privilege-escalation pentest |
| Proving Grounds - CVE-2023-6019 (Linux) | Linux | proving-grounds oscp linux suid git-dump cve-2023-6019 privilege-escalation pentest |
| Proving Grounds - DC-9 (Linux) | Linux | proving-grounds oscp linux suid privilege-escalation pentest |
| Proving Grounds - DC-9 (Linux) | Linux | proving-grounds oscp linux suid privilege-escalation pentest |
| Proving Grounds - DriftingBlue6 (Linux) | Linux | proving-grounds oscp linux feroxbuster hash-cracking suid kernel-exploit cve-2016-5195 web privilege-escalation pentest |
| Proving Grounds - DriftingBlue6 (Linux) | Linux | proving-grounds oscp linux feroxbuster hash-cracking suid kernel-exploit cve-2016-5195 web privilege-escalation pentest |
| Proving Grounds - DVR4 (Windows) | Windows | proving-grounds oscp windows path-traversal rdp winrm ssh unquoted-service-path searchsploit cve-2018-15745 web privilege-escalation pentest |
| Proving Grounds - DVR4 (Windows) | Windows | proving-grounds oscp windows path-traversal rdp winrm ssh unquoted-service-path searchsploit cve-2018-15745 web privilege-escalation pentest |
| Proving Grounds - Educated (Linux) | Linux | proving-grounds oscp linux suid privilege-escalation pentest |
| Proving Grounds - Educated (Linux) | Linux | proving-grounds oscp linux suid privilege-escalation pentest |
| Proving Grounds - Election1 (Linux) | Linux | proving-grounds oscp linux wordpress phpmyadmin ftp suid searchsploit cve-2016-5734 cve-2019-12181 web privilege-escalation pentest |
| Proving Grounds - Election1 (Linux) | Linux | proving-grounds oscp linux wordpress phpmyadmin ftp suid searchsploit cve-2016-5734 cve-2019-12181 web privilege-escalation pentest |
| Proving Grounds - Exfiltrated (Linux) | Linux | proving-grounds oscp linux csrf file-upload webshell suid reverse-shell cve-2018-19422 web privilege-escalation pentest |
| Proving Grounds - Exfiltrated (Linux) | Linux | proving-grounds oscp linux csrf file-upload webshell suid reverse-shell cve-2018-19422 web privilege-escalation pentest |
| Proving Grounds - Extplorer (Linux) | Linux | proving-grounds oscp linux wordpress extplorer ssh hash-cracking suid linpeas web privilege-escalation pentest |
| Proving Grounds - Extplorer (Linux) | Linux | proving-grounds oscp linux wordpress extplorer ssh hash-cracking suid linpeas web privilege-escalation pentest |
| Proving Grounds - Fanatastic (Linux) | Linux | proving-grounds oscp linux ssh suid cve-2021-43798 privilege-escalation pentest |
| Proving Grounds - Fanatastic (Linux) | Linux | proving-grounds oscp linux ssh suid cve-2021-43798 privilege-escalation pentest |
| Proving Grounds - Fired (Linux) | Linux | proving-grounds oscp linux openfire xmpp suid cve-2023-32315 web privilege-escalation pentest |
| Proving Grounds - Fired (Linux) | Linux | proving-grounds oscp linux openfire xmpp suid cve-2023-32315 web privilege-escalation pentest |
| Proving Grounds - Fish (Windows) | Windows | proving-grounds oscp windows path-traversal searchsploit cve-2017-1000028 web pentest |
| Proving Grounds - Fish (Windows) | Windows | proving-grounds oscp windows path-traversal searchsploit cve-2017-1000028 web pentest |
| Proving Grounds - Flu (Linux) | Linux | proving-grounds oscp linux mysql ssh suid reverse-shell cve-2022-26134 privilege-escalation pentest |
| Proving Grounds - Flu (Linux) | Linux | proving-grounds oscp linux mysql ssh suid reverse-shell cve-2022-26134 privilege-escalation pentest |
| Proving Grounds - Funbox (Linux) | Linux | proving-grounds oscp linux wpscan wordpress dictionary-attack apache ssh suid cron pspy web privilege-escalation pentest |
| Proving Grounds - Funbox (Linux) | Linux | proving-grounds oscp linux wpscan wordpress dictionary-attack apache ssh suid cron pspy web privilege-escalation pentest |
| Proving Grounds - FunboxEasyEnum (Linux) | Linux | proving-grounds oscp linux feroxbuster dictionary-attack phpmyadmin hash-cracking suid cron pspy web privilege-escalation pentest |
| Proving Grounds - FunboxEasyEnum (Linux) | Linux | proving-grounds oscp linux feroxbuster dictionary-attack phpmyadmin hash-cracking suid cron pspy web privilege-escalation pentest |
| Proving Grounds - Gaara (Linux) | Linux | proving-grounds oscp linux hydra brute-force dictionary-attack ssh suid privilege-escalation pentest |
| Proving Grounds - Gaara (Linux) | Linux | proving-grounds oscp linux hydra brute-force dictionary-attack ssh suid privilege-escalation pentest |
| Proving Grounds - GlasgowSmile (Linux) | Linux | proving-grounds oscp linux feroxbuster joomscan joomla apache mysql ssh suid cron pspy web privilege-escalation pentest |
| Proving Grounds - GlasgowSmile (Linux) | Linux | proving-grounds oscp linux feroxbuster joomscan joomla apache mysql ssh suid cron pspy web privilege-escalation pentest |
| Proving Grounds - GLPI (Linux) | Linux | proving-grounds oscp linux mysql glpi ssh suid cve-2022-35914 web privilege-escalation pentest |
| Proving Grounds - GLPI (Linux) | Linux | proving-grounds oscp linux mysql glpi ssh suid cve-2022-35914 web privilege-escalation pentest |
| Proving Grounds - Heist (Windows) | Windows | proving-grounds oscp windows feroxbuster dictionary-attack ssrf rdp evil-winrm winrm pass-the-hash responder llmnr-poisoning hash-cracking gmsa active-directory |
| Proving Grounds - Heist (Windows) | Windows | proving-grounds oscp windows feroxbuster dictionary-attack ssrf rdp evil-winrm winrm pass-the-hash responder llmnr-poisoning hash-cracking gmsa active-directory |
| Proving Grounds - hokkaido (Windows) | Windows | proving-grounds oscp windows netexec kerbrute password-spraying dictionary-attack iis mssql rdp evil-winrm winrm kerberoasting pass-the-hash secretsdump |
| Proving Grounds - hokkaido (Windows) | Windows | proving-grounds oscp windows netexec kerbrute password-spraying dictionary-attack iis mssql rdp evil-winrm winrm kerberoasting pass-the-hash secretsdump |
| Proving Grounds - Hub (Linux) | Linux | proving-grounds oscp linux suid reverse-shell cve-2024-27697 privilege-escalation pentest |
| Proving Grounds - Hub (Linux) | Linux | proving-grounds oscp linux suid reverse-shell cve-2024-27697 privilege-escalation pentest |
| Proving Grounds - Hutch (Windows) | Windows | proving-grounds oscp windows ldap-enum webshell iis psexec laps potato-attack webdav active-directory web privilege-escalation pentest |
| Proving Grounds - Hutch (Windows) | Windows | proving-grounds oscp windows ldap-enum webshell iis psexec laps potato-attack webdav active-directory web privilege-escalation pentest |
| Proving Grounds - Image (Linux) | Linux | proving-grounds oscp linux command-injection apache imagemagick ssh suid linpeas reverse-shell cve-2023-34152 web privilege-escalation pentest |
| Proving Grounds - Image (Linux) | Linux | proving-grounds oscp linux command-injection apache imagemagick ssh suid linpeas reverse-shell cve-2023-34152 web privilege-escalation pentest |
| Proving Grounds - Jordak (Linux) | Linux | proving-grounds oscp linux feroxbuster lfi path-traversal log-poisoning apache jorani ssh sudo reverse-shell cve-2023-26469 web privilege-escalation |
| Proving Grounds - Jordak (Linux) | Linux | proving-grounds oscp linux feroxbuster lfi path-traversal log-poisoning apache jorani ssh sudo reverse-shell cve-2023-26469 web privilege-escalation |
| Proving Grounds - Katana (Linux) | Linux | proving-grounds oscp linux feroxbuster suid linux-capabilities reverse-shell web privilege-escalation pentest |
| Proving Grounds - Katana (Linux) | Linux | proving-grounds oscp linux feroxbuster suid linux-capabilities reverse-shell web privilege-escalation pentest |
| Proving Grounds - LaVita (Linux) | Linux | proving-grounds oscp linux feroxbuster apache mysql laravel ssh sudo suid linux-capabilities cron pspy reverse-shell cve-2021-3129 |
| Proving Grounds - LaVita (Linux) | Linux | proving-grounds oscp linux feroxbuster apache mysql laravel ssh sudo suid linux-capabilities cron pspy reverse-shell cve-2021-3129 |
| Proving Grounds - law (Linux) | Linux | proving-grounds oscp linux feroxbuster suid cron cve-2022-35914 web privilege-escalation pentest |
| Proving Grounds - law (Linux) | Linux | proving-grounds oscp linux feroxbuster suid cron cve-2022-35914 web privilege-escalation pentest |
| Proving Grounds - Levram (Linux) | Linux | proving-grounds oscp linux suid cve-2021-43857 privilege-escalation pentest |
| Proving Grounds - Levram (Linux) | Linux | proving-grounds oscp linux suid cve-2021-43857 privilege-escalation pentest |
| Proving Grounds - Loly (Linux) | Linux | proving-grounds oscp linux feroxbuster wpscan wordpress dictionary-attack nginx sudo suid cron reverse-shell web privilege-escalation pentest |
| Proving Grounds - Loly (Linux) | Linux | proving-grounds oscp linux feroxbuster wpscan wordpress dictionary-attack nginx sudo suid cron reverse-shell web privilege-escalation pentest |
| Proving Grounds - Mantis (Linux) | Linux | proving-grounds oscp linux feroxbuster mysql ssh sudo suid cron web privilege-escalation pentest |
| Proving Grounds - Mantis (Linux) | Linux | proving-grounds oscp linux feroxbuster mysql ssh sudo suid cron web privilege-escalation pentest |
| Proving Grounds - Marketing (Linux) | Linux | proving-grounds oscp linux feroxbuster ffuf dirb nikto whatweb apache mssql mysql ssh sudo reverse-shell cve-2021-44967 |
| Proving Grounds - Marketing (Linux) | Linux | proving-grounds oscp linux feroxbuster ffuf dirb nikto whatweb apache mssql mysql ssh sudo reverse-shell cve-2021-44967 |
| Proving Grounds - Marshalled (Linux) | Linux | proving-grounds oscp linux feroxbuster ffuf jenkins ssh suid reverse-shell web privilege-escalation pentest |
| Proving Grounds - Marshalled (Linux) | Linux | proving-grounds oscp linux feroxbuster ffuf jenkins ssh suid reverse-shell web privilege-escalation pentest |
| Proving Grounds - MZEEAV (Linux) | Linux | proving-grounds oscp linux file-upload apache ssh suid reverse-shell web privilege-escalation pentest |
| Proving Grounds - MZEEAV (Linux) | Linux | proving-grounds oscp linux file-upload apache ssh suid reverse-shell web privilege-escalation pentest |
| Proving Grounds - Nagoya (Windows) | Windows | proving-grounds oscp windows feroxbuster netexec kerbrute smb-enum password-spraying dictionary-attack iis mssql smb evil-winrm winrm kerberoasting |
| Proving Grounds - Nagoya (Windows) | Windows | proving-grounds oscp windows feroxbuster netexec kerbrute smb-enum password-spraying dictionary-attack iis mssql smb evil-winrm winrm kerberoasting |
| Proving Grounds - Nara (Windows) | Windows | proving-grounds oscp windows netexec smb-enum dictionary-attack smb evil-winrm winrm certipy adcs active-directory sysvol responder llmnr-poisoning |
| Proving Grounds - Nara (Windows) | Windows | proving-grounds oscp windows netexec smb-enum dictionary-attack smb evil-winrm winrm certipy adcs active-directory sysvol responder llmnr-poisoning |
| Proving Grounds - Nibbles (Linux) | Linux | proving-grounds oscp linux apache postgresql vsftpd ftp ssh suid reverse-shell web privilege-escalation pentest |
| Proving Grounds - Nibbles (Linux) | Linux | proving-grounds oscp linux apache postgresql vsftpd ftp ssh suid reverse-shell web privilege-escalation pentest |
| Proving Grounds - Nukem (Linux) | Linux | proving-grounds oscp linux feroxbuster wpscan wordpress smb-enum apache smb suid cron web privilege-escalation pentest |
| Proving Grounds - Nukem (Linux) | Linux | proving-grounds oscp linux feroxbuster wpscan wordpress smb-enum apache smb suid cron web privilege-escalation pentest |
| Proving Grounds - Ochima (Linux) | Linux | proving-grounds oscp linux feroxbuster apache ssh cron pspy reverse-shell cve-2023-27163 web privilege-escalation pentest |
| Proving Grounds - Ochima (Linux) | Linux | proving-grounds oscp linux feroxbuster apache ssh cron pspy reverse-shell cve-2023-27163 web privilege-escalation pentest |
| Proving Grounds - Resourced (Windows) | Windows | proving-grounds oscp windows rpc-enum smb-enum smb evil-winrm winrm pass-the-hash rbcd constrained-delegation ntds-dit secretsdump psexec active-directory |
| Proving Grounds - Resourced (Windows) | Windows | proving-grounds oscp windows rpc-enum smb-enum smb evil-winrm winrm pass-the-hash rbcd constrained-delegation ntds-dit secretsdump psexec active-directory |
| Proving Grounds - Vault (Windows) | Windows | proving-grounds oscp windows netexec smb-enum dictionary-attack smb evil-winrm winrm sysvol responder llmnr-poisoning hash-cracking active-directory pentest |
| Proving Grounds - Vault (Windows) | Windows | proving-grounds oscp windows netexec smb-enum dictionary-attack smb evil-winrm winrm sysvol responder llmnr-poisoning hash-cracking active-directory pentest |
TryHackMe
| Title | OS | Tags |
|---|---|---|
| TryHackMe - Alfred (Windows) | Windows | tryhackme windows feroxbuster jenkins sudo suid reverse-shell web privilege-escalation pentest |
| TryHackMe - Alfred (Windows) | Windows | tryhackme windows feroxbuster jenkins sudo suid reverse-shell web privilege-escalation pentest |
| TryHackMe - All in One (Linux) | Linux | tryhackme linux ffuf wpscan wordpress dictionary-attack apache vsftpd ftp ssh suid cron web privilege-escalation pentest |
| TryHackMe - All in One (Linux) | Linux | tryhackme linux ffuf wpscan wordpress dictionary-attack apache vsftpd ftp ssh suid cron web privilege-escalation pentest |
| TryHackMe - Attacking Kerberos (Windows) | Windows | tryhackme windows kerbrute kerberoasting as-rep-roasting mimikatz pass-the-ticket samaccountname-spoofing hash-cracking hashcat sudo suid active-directory privilege-escalation pentest |
| TryHackMe - Attacking Kerberos (Windows) | Windows | tryhackme windows kerbrute kerberoasting as-rep-roasting mimikatz pass-the-ticket samaccountname-spoofing hash-cracking hashcat sudo suid active-directory privilege-escalation pentest |
| TryHackMe - Attacktive Directory (Windows) | Windows | tryhackme windows enum4linux kerbrute iis samba smb rdp evil-winrm winrm as-rep-roasting secretsdump hash-cracking suid active-directory |
| TryHackMe - Attacktive Directory (Windows) | Windows | tryhackme windows enum4linux kerbrute iis samba smb rdp evil-winrm winrm as-rep-roasting secretsdump hash-cracking suid active-directory |
| TryHackMe - bandit (Linux) | Linux | tryhackme linux feroxbuster apache ssh sudo suid web privilege-escalation pentest |
| TryHackMe - bandit (Linux) | Linux | tryhackme linux feroxbuster apache ssh sudo suid web privilege-escalation pentest |
| TryHackMe - Blaster (Windows) | Windows | tryhackme windows feroxbuster wordpress rdp winrm sudo suid web privilege-escalation pentest |
| TryHackMe - Blaster (Windows) | Windows | tryhackme windows feroxbuster wordpress rdp winrm sudo suid web privilege-escalation pentest |
| TryHackMe - blog (Windows) | Windows | tryhackme windows ffuf wpscan wordpress dictionary-attack apache samba smb ftp ssh suid metasploit web privilege-escalation |
| TryHackMe - blog (Windows) | Windows | tryhackme windows ffuf wpscan wordpress dictionary-attack apache samba smb ftp ssh suid metasploit web privilege-escalation |
| TryHackMe - ColddBox - Easy (Linux) | Linux | tryhackme linux ffuf wpscan wordpress dictionary-attack apache ftp suid cron web privilege-escalation pentest |
| TryHackMe - ColddBox - Easy (Linux) | Linux | tryhackme linux ffuf wpscan wordpress dictionary-attack apache ftp suid cron web privilege-escalation pentest |
| TryHackMe - Corp (Windows) | Windows | tryhackme windows dictionary-attack evil-winrm winrm kerberoasting hash-cracking hashcat sudo suid active-directory privilege-escalation pentest |
| TryHackMe - Corp (Windows) | Windows | tryhackme windows dictionary-attack evil-winrm winrm kerberoasting hash-cracking hashcat sudo suid active-directory privilege-escalation pentest |
| TryHackMe - Daily Bugle (Linux) | Linux | tryhackme linux feroxbuster joomscan joomla dictionary-attack csrf apache mysql ssh hash-cracking sudo suid linpeas reverse-shell |
| TryHackMe - Daily Bugle (Linux) | Linux | tryhackme linux feroxbuster joomscan joomla dictionary-attack csrf apache mysql ssh hash-cracking sudo suid linpeas reverse-shell |
| TryHackMe - Disgruntled (Linux) | Linux | tryhackme linux apache ssh sudo suid cron web privilege-escalation pentest |
| TryHackMe - Disgruntled (Linux) | Linux | tryhackme linux apache ssh sudo suid cron web privilege-escalation pentest |
| TryHackMe - Expose (Windows) | Windows | tryhackme windows ffuf dirb sqlmap sql-injection apache mysql redis vsftpd ftp phpmyadmin ssh sudo suid |
| TryHackMe - Expose (Windows) | Windows | tryhackme windows ffuf dirb sqlmap sql-injection apache mysql redis vsftpd ftp phpmyadmin ssh sudo suid |
| TryHackMe - Game Zone (Linux) | Linux | tryhackme linux feroxbuster nikto dictionary-attack sqlmap sql-injection apache mysql ssh hash-cracking hashcat sudo suid metasploit |
| TryHackMe - Game Zone (Linux) | Linux | tryhackme linux feroxbuster nikto dictionary-attack sqlmap sql-injection apache mysql ssh hash-cracking hashcat sudo suid metasploit |
| TryHackMe - HackPark (Windows) | Windows | tryhackme windows nikto hydra brute-force dictionary-attack iis rdp winrm ssh mimikatz gpp-decrypt sysvol ntds-dit sudo |
| TryHackMe - HackPark (Windows) | Windows | tryhackme windows nikto hydra brute-force dictionary-attack iis rdp winrm ssh mimikatz gpp-decrypt sysvol ntds-dit sudo |
| TryHackMe - Holo (Windows) | Windows | tryhackme windows wpscan wordpress dictionary-attack xss csrf apache nginx mysql vsftpd ftp imagemagick ssh hash-cracking |
| TryHackMe - Holo (Windows) | Windows | tryhackme windows wpscan wordpress dictionary-attack xss csrf apache nginx mysql vsftpd ftp imagemagick ssh hash-cracking |
| TryHackMe - hydra (Linux) | Linux | tryhackme linux hydra brute-force dictionary-attack ssh suid privilege-escalation pentest |
| TryHackMe - hydra (Linux) | Linux | tryhackme linux hydra brute-force dictionary-attack ssh suid privilege-escalation pentest |
| TryHackMe - Include (Linux) | Linux | tryhackme linux ffuf hydra brute-force lfi path-traversal apache phpmyadmin ssh sudo suid linux-capabilities cron web |
| TryHackMe - Include (Linux) | Linux | tryhackme linux ffuf hydra brute-force lfi path-traversal apache phpmyadmin ssh sudo suid linux-capabilities cron web |
| TryHackMe - jokerctf (Linux) | Linux | tryhackme linux ffuf dirb apache ssh suid web privilege-escalation pentest |
| TryHackMe - jokerctf (Linux) | Linux | tryhackme linux ffuf dirb apache ssh suid web privilege-escalation pentest |
| TryHackMe - Kenobi (Windows) | Windows | tryhackme windows smb-enum apache proftpd ftp samba smb ssh nfs sysvol sudo suid kernel-exploit metasploit |
| TryHackMe - Kenobi (Windows) | Windows | tryhackme windows smb-enum apache proftpd ftp samba smb ssh nfs sysvol sudo suid kernel-exploit metasploit |
| TryHackMe - Linux PrivEsc (Linux) | Linux | tryhackme linux dictionary-attack mysql ssh hash-cracking sudo suid cron kernel-exploit msfvenom cve-2016-5195 privilege-escalation pentest |
| TryHackMe - Linux PrivEsc (Linux) | Linux | tryhackme linux dictionary-attack mysql ssh hash-cracking sudo suid cron kernel-exploit msfvenom cve-2016-5195 privilege-escalation pentest |
| TryHackMe - Linux Privilege Escalation (Windows) | Windows | tryhackme windows dictionary-attack ssh hash-cracking hashcat sudo suid linux-capabilities cron privilege-escalation pentest |
| TryHackMe - Linux Privilege Escalation (Windows) | Windows | tryhackme windows dictionary-attack ssh hash-cracking hashcat sudo suid linux-capabilities cron privilege-escalation pentest |
| TryHackMe - Mr Robot CTF (Linux) | Linux | tryhackme linux feroxbuster wpscan wordpress hydra brute-force apache ssh sudo suid cron web privilege-escalation pentest |
| TryHackMe - Mr Robot CTF (Linux) | Linux | tryhackme linux feroxbuster wpscan wordpress hydra brute-force apache ssh sudo suid cron web privilege-escalation pentest |
| TryHackMe - Overpass (Linux) | Linux | tryhackme linux ffuf dictionary-attack ssh hash-cracking suid cron reverse-shell web privilege-escalation pentest |
| TryHackMe - Overpass (Linux) | Linux | tryhackme linux ffuf dictionary-attack ssh hash-cracking suid cron reverse-shell web privilege-escalation pentest |
| TryHackMe - PS Eclipse (Windows) | Windows | tryhackme windows suid privilege-escalation pentest |
| TryHackMe - PS Eclipse (Windows) | Windows | tryhackme windows suid privilege-escalation pentest |
| TryHackMe - Red (Windows) | Windows | tryhackme windows ffuf nikto apache gitlab ssh hash-cracking hashcat sudo suid web privilege-escalation pentest |
| TryHackMe - Red (Windows) | Windows | tryhackme windows ffuf nikto apache gitlab ssh hash-cracking hashcat sudo suid web privilege-escalation pentest |
| TryHackMe - Retro (Windows) | Windows | tryhackme windows feroxbuster wpscan wordpress iis rdp sudo suid cron web privilege-escalation pentest |
| TryHackMe - Retro (Windows) | Windows | tryhackme windows feroxbuster wpscan wordpress iis rdp sudo suid cron web privilege-escalation pentest |
| TryHackMe - RootMe (Linux) | Linux | tryhackme linux ffuf apache ssh suid reverse-shell web privilege-escalation pentest |
| TryHackMe - RootMe (Linux) | Linux | tryhackme linux ffuf apache ssh suid reverse-shell web privilege-escalation pentest |
| TryHackMe - Simple CTF (Linux) | Linux | tryhackme linux ffuf dictionary-attack sql-injection apache vsftpd ftp ssh sudo suid searchsploit web privilege-escalation pentest |
| TryHackMe - Simple CTF (Linux) | Linux | tryhackme linux ffuf dictionary-attack sql-injection apache vsftpd ftp ssh sudo suid searchsploit web privilege-escalation pentest |
| TryHackMe - Skynet (Linux) | Linux | tryhackme linux feroxbuster enum4linux rpc-enum smb-enum hydra brute-force apache samba smb ssh sudo suid cron |
| TryHackMe - Skynet (Linux) | Linux | tryhackme linux feroxbuster enum4linux rpc-enum smb-enum hydra brute-force apache samba smb ssh sudo suid cron |
| TryHackMe - Startup🌶 (Windows) | Windows | tryhackme windows ffuf apache vsftpd ftp ssh suid reverse-shell web privilege-escalation pentest |
| TryHackMe - Startup🌶 (Windows) | Windows | tryhackme windows ffuf apache vsftpd ftp ssh suid reverse-shell web privilege-escalation pentest |
| TryHackMe - Stealth (Windows) | Windows | tryhackme windows ffuf phpmyadmin suid reverse-shell web privilege-escalation pentest |
| TryHackMe - Stealth (Windows) | Windows | tryhackme windows ffuf phpmyadmin suid reverse-shell web privilege-escalation pentest |
| TryHackMe - Steel Mountain (Windows) | Windows | tryhackme windows smb-enum xss csrf file-upload apache iis smb ftp rdp sudo suid metasploit searchsploit |
| TryHackMe - Steel Mountain (Windows) | Windows | tryhackme windows smb-enum xss csrf file-upload apache iis smb ftp rdp sudo suid metasploit searchsploit |
| TryHackMe - StuxCTF (Linux) | Linux | tryhackme linux feroxbuster nikto webshell sudo suid web privilege-escalation pentest |
| TryHackMe - StuxCTF (Linux) | Linux | tryhackme linux feroxbuster nikto webshell sudo suid web privilege-escalation pentest |
| TryHackMe - ToolsRus (Linux) | Linux | tryhackme linux ffuf hydra brute-force dictionary-attack csrf tomcat ssh suid metasploit web privilege-escalation pentest |
| TryHackMe - ToolsRus (Linux) | Linux | tryhackme linux ffuf hydra brute-force dictionary-attack csrf tomcat ssh suid metasploit web privilege-escalation pentest |
| TryHackMe - UltraTech (Windows) | Windows | tryhackme windows gobuster feroxbuster ffuf dirb nikto dictionary-attack wordpress apache vsftpd ftp ssh hash-cracking hashcat |
| TryHackMe - UltraTech (Windows) | Windows | tryhackme windows gobuster feroxbuster ffuf dirb nikto dictionary-attack wordpress apache vsftpd ftp ssh hash-cracking hashcat |
| TryHackMe - Vulnversity (Windows) | Windows | tryhackme windows gobuster apache vsftpd ftp samba smb ssh suid kernel-exploit reverse-shell web privilege-escalation pentest |
| TryHackMe - Vulnversity (Windows) | Windows | tryhackme windows gobuster apache vsftpd ftp samba smb ssh suid kernel-exploit reverse-shell web privilege-escalation pentest |
| TryHackMe - Weasel (Windows) | Windows | tryhackme windows enum4linux smb-enum smb rdp ssh suid privilege-escalation pentest |
| TryHackMe - Weasel (Windows) | Windows | tryhackme windows enum4linux smb-enum smb rdp ssh suid privilege-escalation pentest |
| TryHackMe - Windows PrivEsc (Windows) | Windows | tryhackme windows sudo suid winpeas reverse-shell privilege-escalation pentest |
| TryHackMe - Windows PrivEsc (Windows) | Windows | tryhackme windows sudo suid winpeas reverse-shell privilege-escalation pentest |
| TryHackMe - Windows PrivEsc Arena (Windows) | Windows | tryhackme windows rdp sudo suid alwaysinstallelevated unquoted-service-path msfvenom privilege-escalation pentest |
| TryHackMe - Windows PrivEsc Arena (Windows) | Windows | tryhackme windows rdp sudo suid alwaysinstallelevated unquoted-service-path msfvenom privilege-escalation pentest |
| TryHackMe - Wordpress CVE-2021-29447 (Linux) | Linux | tryhackme linux dictionary-attack xxe wordpress mysql hash-cracking sudo suid linux-capabilities cron cve-2021-29447 web privilege-escalation pentest |
| TryHackMe - Wordpress CVE-2021-29447 (Linux) | Linux | tryhackme linux dictionary-attack xxe wordpress mysql hash-cracking sudo suid linux-capabilities cron cve-2021-29447 web privilege-escalation pentest |