Next on TJ_Null’s list for me was “Bastard”. 1. Enumeration The first step is enumeration. As always, I started with an nmap scan of the machine. The following ports were opened. 80/tcp – HTTP 135/tcp – msrpc 49154/tcp – msrpc I started by investigating port 80 to see what all could be enumerated. The server […]

In continuing on with TJ_Null’s OSCP-like VMs, I moved on to “Bashed”. 1. Enumeration I started the machine with an nmap. The scan showed the following port as open: 80/tcp – HTTP Since this machine only appeared to have one port open, I decided to use DirSearch against it. 2. Pwning User I checked the […]

In working through @TJ_Null’s HTB OSCP-like VMs, I started with “Arctic”. I also made a point to finish this machine without using metasploit. 1. Enumeration I started with an nmap scan of the box to find out which services are running. The scan showed up that the following ports were open. 135/tcp – msrpc 8500/tcp […]

It has been a while since I have posted anything. This is mainly because I took a break from Hack the Box and invested in 3 months of Virtual Hacking Labs access. Coming into Virtual Hacking Labs I had some light red-team training (GCIH, Some HTB boxes, etc), but I really wanted to focus on […]