CTF

Passwords for the Active Hack the Box machines

Byadmin April 19, 2020June 6, 2020

New methods

For linux

-cat /etc/shadow
Example this.

root:$6$YIFGN9YscCV72BjFtx/tehbc7sQTJp09c5.:18277:0:99999:7:::
So use the highlighted part as the password.
So password = YIFGN9YscCV72BjFtx/

For Windows

Use ntlm hash
Example Administrator:500:aad3b435b51404eeaad3b435b51404ee:31d6cfe0d16ae931b73c59d7e0c:::
password = 31d6cfe0d16ae931b73c59d7e0c

Old methods

For linux

1- cat /etc/shadow
2-copy whole hash(root)
root:$6$YIFGN9YscCV72BjFtx/tehbc7sQTJp09c5.:18277:0:99999:7:::
3-Then find it's MD5 sum and that's your password for writeup

For windows

1-Find root hash with hashdump.exe or any other tool.
2-Then convert that also into MD5 sum
3-That's your password for the Writeup

CTF | HTB | Retired

Hackthebox Sense Writeup
Byadmin April 24, 2020November 12, 2020

Hackthebox Sense Writeup

Read More Hackthebox Sense Writeup
CTF | HTB | Retired

Hackthebox Magic writeup
Byadmin April 22, 2020September 1, 2020

Introduction It is a medium machine from the hack the box platform.Which has simple authentication bypass to upload a malicious file and then jumping a user followed by privilege escalation using SUID Steps involved 1-Port Scan2-Visiting website3-Authentication bypass4-Encoding php inside image5-Uploading malicious file and bypassing security check6-Uploading php reverse shell7-Getting full shell8-Getting db user creds9-Jumping…

Read More Hackthebox Magic writeup
Active | Active machines | CTF | HTB

Hackthebox Sneakymailer writeup
Byadmin October 3, 2020October 3, 2020

Introduction Column Details Name Sneakymailer IP 10.10.10.197 Points 30 Os Linux Difficulty Medium Creator Sulcud Out On 11 July 2020 Steps involved 1-Port Scan 2-Basic website enumeration 3-Sending Spoofed mail 4-Login into imap using paulbyrd creds and extracting mails 5-Login into ftp using developer creds 6-Uploading a Reverse shell through ftp 7-Subdomain enumeration 8-Getting shell…

Read More Hackthebox Sneakymailer writeup
Active | Active machines | BSD

Hackthebox Luanne Writeup
Byadmin January 4, 2021January 25, 2021

Introduction It is a openBSD machine which has some directory enumeration and mostly all the steps are based on enumeration.Making the initial foothold may take time but over all a great machine . Steps involved 1-Port Scan 2-Enumerating website 3-Directory enumeration 4-Making of perfect payload 5-Getting reverse shell 6-Getting webapi_user password 7-Getting ssh keys for…

Read More Hackthebox Luanne Writeup
Active | Active machines | Linux Boxes

Hackthebox Spectra writeup
Byadmin April 5, 2021April 13, 2021

It is easy machine from hackthebox. Which includes little web directory enumeration which leads to password leaks. Then with the help of msfconsole we get initial shell . After some basic enumeration gets password for a ssh user. Followed by privilege escalation by abusing sudo rights in this it was

Read More Hackthebox Spectra writeup
CTF | HTB | Retired

Hack the box Openadmin Writeup
Byadmin May 2, 2020November 12, 2020

Hackthebox openadmin writeup

Read More Hack the box Openadmin Writeup

New methods

For linux

For Windows

Old methods

For linux

For windows

Similar Posts

Leave a Reply Cancel reply