Time
· ☕ 9 min read · ✍️ M4t35Z
My HackTheBox Time writeup (Jackson rce --> Weak permissions)
Overpass3 - Hosting
· ☕ 9 min read · ✍️ M4t35Z
dirfuzz --> backup --> gpg --> creds --> ftp --> pw reuse --> nfs
Feline
· ☕ 12 min read · ✍️ M4t35Z
A box featuring java deserialization multiple CVE's and a docker privesc
The Great Escape
· ☕ 14 min read · ✍️ M4t35Z
robots --> backup --> dev api --> command injection --> injection --> git log --> port knocking --> docker -H
Overpass2 - hacked
· ☕ 4 min read · ✍️ M4t35Z
A box about pcap analysis and a SUID binary
Archangel
· ☕ 8 min read · ✍️ M4t35Z
A box about getting an RCE via LFI and Log Poisoning. Then abusing a cronjob that used a file with weak permissions. And then analysing a suid binary which used relative paths instead of absolute paths which made it vulnerable to path injection.
hackerNote
· ☕ 5 min read · ✍️ M4t35Z
A box about user enumeration(I did it with the hint fuctionality), brute forcing and abusing a well-known sudo cve (pwfeedback bof)
Overpass
· ☕ 7 min read · ✍️ M4t35Z
TryHackMe Overpass writeup
Omni
· ☕ 6 min read · ✍️ M4t35Z
HackTheBox Omni writeup. A Windows IOT box, with PSCredential encrypted flags
Bot Takeover 0x1
· ☕ 5 min read · ✍️ M4t35Z
Command injection in a discord BOT