Sharing writeups of CTF challenges and Machines
Enumeration Nmap result Check FTP, SMB, and web server are open. FTP Since it allows anonymous FTP login, let’s get into the service. I enumerated directories and found the user.txt from /Users/Public/Desktop. Also, I found other files as well. I don’t know what PRTG is. But I will get these files for later use. HTTP … Read More “Hack the box – machine – Netmon (CVE-2018-9276)” »
Blue is one of the super easy machines. Enumeration Let’s nmap the target machine. Ok, the nmap result told me some useful information. First, we can see the target machine is open for SMB service. Second, the computer’s name is haris-PC. So let’s remember the computer’s name. As a next step, I googled to find … Read More “Hack the box – machine – Blue” »
At a glance, what protocol seems to be suspect in this attack? At first glance, I see many DNS protocols. There seems to be a lot of traffic between our host and another, what is the IP address of the suspect host? I filtered it to only see DNS. When I scrolled it down a … Read More “Hack the box – Sherlocks – Litter” »
Analyzing the auth.log, can you identify the IP address used by the attacker to carry out a brute-force attack? we can easily find it in the log file. 65.2.161.68 The brute force attempts were successful, and the attacker gained access to an account on the server. What is the username of this account? We can … Read More “Hack the box – Sherlocks – Brutus” »
In this post, I will walk through Analytics machine in Hack the box. Information gathering First of all, when nmap the machine, you can find 2 ports are open which are 22 and 80. So, let’s check the web page first. Before check the web page, you need to add the domain to /etc/hosts file. … Read More “Hack The Box – Analytics write-up [Easy]” »
OK, let’s solve the codify machine from Hack the box this time. It is officially marked as easy, but personally, I felt it was not so easy. Enumeration First, let’s see the result of nmap. It has web servers called Codify on port 80 and 3000. Before looking into the web page, let’s add it … Read More “Hack the box : Codify[easy] write up” »
![Hack The Box – Analytics write-up [Easy]](https://eonbelievable.com/wp-content/uploads/2024/03/image-8.png)
![Hack the box : Codify[easy] write up](https://eonbelievable.com/wp-content/uploads/2024/04/image-29.png)