Sharing writeups of CTF challenges and Machines
Enumeration Nmap the target machine Check that ports 139 and 445 are open. So we can target the smb service. I tried to enumerate smb users or shares using several tools such as smbclinet, smbmap, and rpcclient. But I couldn’t get any useful information. I managed to anonymously login to the service but due to … Read More “Hack the box – Legacy – CVE-2008-4250” »
Enumeration nmap the target machine. The result shows me the keyword activemq. I googled activemq exploit. I found it has the vulnerability CVE-2023-46604 and the default port is 61616. Also, I found that it is on metasploit. So I chose metasploit instead of using the github source code. user flag That’s the one I found. … Read More “Hack the box – machine – Broker (CVE-2023-46604)” »
Description The factory is hiding things from all of its users. Can you login as Joe and find what they’ve been looking at? https://jupiter.challenges.picoctf.org/problem/44573/ (link) or http://jupiter.challenges.picoctf.org:44573 Solution Go to the link, we see a login page. I read the source code but there were no useful information. I just cliked every buttons and I noticed we … Read More “picoCTF2019 – logon” »
Enumeration Nmap result Check FTP, SMB, and web server are open. FTP Since it allows anonymous FTP login, let’s get into the service. I enumerated directories and found the user.txt from /Users/Public/Desktop. Also, I found other files as well. I don’t know what PRTG is. But I will get these files for later use. HTTP … Read More “Hack the box – machine – Netmon (CVE-2018-9276)” »
Blue is one of the super easy machines. Enumeration Let’s nmap the target machine. Ok, the nmap result told me some useful information. First, we can see the target machine is open for SMB service. Second, the computer’s name is haris-PC. So let’s remember the computer’s name. As a next step, I googled to find … Read More “Hack the box – machine – Blue” »
At a glance, what protocol seems to be suspect in this attack? At first glance, I see many DNS protocols. There seems to be a lot of traffic between our host and another, what is the IP address of the suspect host? I filtered it to only see DNS. When I scrolled it down a … Read More “Hack the box – Sherlocks – Litter” »
