After months of preparation, I am pleased to say that I have passed one of the most prestigious penetration tests in the Cyber Security field. I must admit that studying journey was rather nerve-wracking for me, but I thoroughly liked every minute of it. …


It’s been a while since my last blog. I have been doing a few boxes but did not have a time to write a blog. I started doing medium types of boxes, which I found very challenging. …


Blocky is another easy machine that requires strong enumeration in resolving this box. This machine has Wordpress running, which reveals the key user name upon running Wpscan. This username will be used to login via SSH. Further enumeration on the machine, will reveal a couple of hidden files that contains…


HTB Granny box is quite similar to Grandpa box. I can’t find the difference between Grandpa and Granny. Therefore, i used a different approach in the way of escalating privileges. This box has vulnerable IIS version running which can be exploited using one of the publicly available exploits and gain…


Grandpa is another easy machine. Machine has vulnerable IIS version running. That version can easily be exploited using one of the publicly available exploits and obtain a low privilege shell which can be escalated to root or NT_Authority using Churrasco.

Enumeration

Began with usual Nmap scan


Blue is another easy machine, that is bit tricky when it comes to exploiting the machine. This machine is vulnerable to famous 17–010 vulnerability which is also known as EternalBlue. The exploit is publicly available and requires a series of steps to exploit the machine.

Let’s get it started.

Enumeration

Started…


Nibbles is relatively an easy machine where you have to exploit a blog platform called Nibbleblog, get low privilege access and escalate privileges. …


Jerry is a relatively easy machine that can be exploited with less effort and doesn’t require privilege escalation.

Enumeration

Started with usual Nmap scan


Active is my favorite HTB box so far due to the fact that this machine is based on Active Directory. This machine basically teaches you on how to enumerate Active Directory, crack Group policy preference password and obtain domain admin Kerberos 5 hash to escalate privileges. …


HTB SwagShop is a challenging machine that requires out of the box thinking in order to get through. This machine teaches you on how to edit the exploit before attacking the target. This is a really good preparation for the exam in my opinion.

Let’s get started!

Enumeration

Nmap scan returned…

Nimantha Deshappriya

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store