Haystack was a fun easy box over on HTB. Although perhaps only easy if you were at least aware of the tech stack being used on the machine. The initial path to user is perhaps not realistic but a fun mix of steg and research into elasticsearch in order to get credentials. This if then … Continue reading HTB – Haystack Writeup
So Netmon was a nice little box, not much digging was required for the first flag thats for sure. Nice little exploit of another network / sysadmin web application these seem to always be quite fun and straightforward as they are often designed to execute code on a server. Anyway on with the box! Kicks … Continue reading Netmon
Soooo I fell over my own timetable this weekend. Didn't get a chance to post any blog stuff or even my writeup for NetMon (which will be up tomorrow just in case you haven't read enough of them). I got a bit engrossed in a box on HTB, its called Ellingson, and I can't reccommend … Continue reading The Final Countdown….with pwntools!