OpenSource is an ‘easy’ recent box that I started just as it was coming to the end of its time in the Release Arena. It took me a while longer than I would have liked. So long in fact, it had dropped into the regular area with a different IP […]
This weeks exciting episode of Hack The Box was breaking into RouterSpace, a very easy box that took longer than it should. I ended up with a pair of speed bumps. One was because I couldn’t get an Android emulator running on my usual Kali box in the way I […]
Around a decade or so ago Chris Tarrant used to be the host of a show called Who Wants To Be a Millionaire? shown on ITV in the UK. This show has become a franchise sold worldwide, so wherever you are reading this, you’ve probably seen an incarnation on your […]
Since I hadn’t done any RE for a while, I pulled an easy challenge from Hack The Box. The solution turned out to be incredibly simple, but this caught me out for a little while and anyone new to reversing may not know how to overcome what the designer had […]
It’s been a few months since we popped a shell on Hack The Box. I didn’t fancy a migraine today though, so it’s just an easy box we’re going after. Starting with some basic enumeration, I ran nmap which never seemed to complete for some reason. I wasn’t really waiting […]
After a little bit of a holiday, I needed to get myself sharpened up again and so this ‘easy’ box was chosen for pwnage. One of my colleagues joined me for the first part of this exercise and we had a look at the foothold together. Sorry to disappoint, but […]
It was time for a forensics challenge today. The description suggested to me we’d be digging out the floppy disc for Volatility, a great tool for digging information out of memory dumps: Suspicious traffic was detected from a recruiter’s virtual PC. A memory dump of the offending VM was captured […]
Forge is a medium rated box released within the last couple of weeks on the HTB platform. It’s also the target for today! We start off with an nmap to reveal the attack surface. We can see that ftp is present but not available to us and, other than OpenSSH, […]
After hitting a couple of the discrete challenges recently, it was time to get back to full pwnership. This medium rated box was the dish of the day. Where would be without a quick nmap to see the attack surface. Here’s a slightly snipped version of what was returned. Being […]
Who doesn’t enjoy a little reverse engineering? This Hack the Box reversing challenge is listed as ‘Easy’, and wants us to ‘find the password’. Let’s dive in… After unzipping the contents of the challenge we have a single ELF binary called exatlon_v1. It’s one we can’t immediately disassemble either, so […]