Squashed is an easy HackTheBox machine created by polarbearer and C4rm310. It involves exploiting NFS, a webserver, and X11. Reconnaissance To start this box, let's run a Nmap scan. The Nmap scan reveals the ports for SSH (22), HTTP (80), RPC (111), and NFS (2049) are open. Note:
Lame is an easy HackTheBox machine created by ch4p. It involves some simple enumeration and the exploitation of a known Samba vulnerability. Enumeration To kick off this box, let's run a Nmap scan to see what services and ports are open. nmap -sC -sV 10.129.203.142
DNS is the backbone of the Internet; knowing how to enumerate it is a necessary skill for anyone interested in Information Security or networking. Today, we'll be exploring my favorite ways to probe DNS. Let's get into it! What Is DNS? DNS stands for Domain Name
Hi, hackers! In this post, I'll be going over some best practices you should use when handling malware. Malware has always been an interest of mine, and I've started studying it recently! Keep reading to learn about safe malware handling :) Summary Analyzing malware is an excellent
Debugging Interface is a HackTheBox challenge created by diogt. It is part of the "Intro to Hardware Hacking" track. Description We accessed the embedded device's asynchronous serial debugging interface while it was operational and captured some messages that were being transmitted over it. Can you decode
To solve this challenge, navigate to the webpage and enter any data in the input box. I simply put "The Hacker Witch." Press "Register Me" This will lead you to an error page. Scroll through the error message until you see the APP_KEY field. That&
In this post, you'll be introduced to five essential offensive security tools that will provide great groundwork for a career in information security. While not extensive, this list is diverse and a great place to start learning about tooling! Let's jump into it! 1. Burp Suite
Hi, I'm The Hacker Witch! I'm a fifth-year student at Western Governor's University (previously UCF, go Knights!). I work as a Strategic Advisory Intern at CrowdStrike, and help with Red Team engagements as much as possible. I've been studying information security topics