Hack The Box - Omni
Link: https://www.hackthebox.eu/home/machines/profile/271 Let’s Begin with our Initial Nmap Scan. Nmap Scan Results PORT STATE SERVICE VERSION 135/tcp open msrpc Microsoft …
Welcome to PwnFuzz
Explore our comprehensive research platform with detailed technical analysis, exploit development guides, and cutting-edge security insights.
Hack The Box - Laser
Doing the initial scan we realize that only 3 ports are open, one being the ssh and the other two being the clistener and printer service port. This was unexpected since for most …
Hack The Box - OpenKeyS
Link: https://www.hackthebox.eu/home/machines/profile/267 Let’s Begin with our Initial Nmap Scan. Nmap Scan Results PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH 8.1 …
Hack The Box - Unbalanced
Link: https://www.hackthebox.eu/home/machines/profile/268 Let’s Begin with our Initial Nmap Scan. Nmap Scan Results PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH 7.9p1 …
Hack The Box - SneakyMailer
Link: https://www.hackthebox.eu/home/machines/profile/262 Let’s Begin with our Initial Nmap Scan. Nmap Scan Results PORT STATE SERVICE VERSION 21/tcp open ftp vsftpd 3.0.3 …
Hack The Box - Buff
Link: https://www.hackthebox.eu/home/machines/profile/263 Let’s Begin with our Initial Nmap Scan. Nmap Scan Results PORT STATE SERVICE VERSION 7680/tcp open pando-pub? …
Hack The Box - Tabby
Tabby is an easy Linux machine, first we need to find the LFI and get some sensitive files of Tomcat and Upload war file to get shell and Privilege Escaltion Link: …
Vulnhub - DC 1
Today, We are going to pwn DC 1 by DCAU7 from Vulnhub Description DC-1 is a purposely built vulnerable lab for the purpose of gaining experience in the world of penetration …
Hack The Box - Blunder
We are going to pwn Blunder from Hack The Box. Link: https://www.hackthebox.eu/home/machines/profile/254 Let’s Begin with our Initial Nmap Scan. Nmap Scan Results PORT STATE …
Hack The Box - Cache
We are going to pwn Cache from Hack The Box. Link: https://www.hackthebox.eu/home/machines/profile/251 Let’s Begin with our Initial Nmap Scan. Nmap Scan Results: PORT STATE …
Hack The Box - Blackfield
Blackfield is a good Windows Activity directory box, first we need exploit AS-REP-roasting we can reset another user’s password over RPC. With access to another share, We will …
Hack The Box - Admirer
We need to find some hidden .txt files and one of them have cresentials for FTP and FTP contains webpage backups but everything is old so we need to find new password for the …
Hack The Box - Travel
Travel is super cool box, I personally love this one. We will find an exposed .git folder on one and that provides me the source of the webpage and from there we need code analyze …
Hack The Box - Remote
This box is really a good and easy one. There ia a webpage running and we can find the backup of the webpage in NFS service. It contains username and password and the Web service …
Hack The Box - Quick
Quick is a hard and very interesting box, First we need to access a webpage hosted over Quic / HTTP version 3. We need to exploit a printer service that gives us one of the users …
Hack The Box - Reddish
This box is full docker, Finding each way to escape the container and finally there is a misconfiguration in a container which leads us to mount the entire drive. This box …
Hack The Box - Reel
Really a good AD box, We need to do Phishing attack to get the initial shell and 1st user has WriteOwner Permission over another user. And 2nd User has some WriteDacl permission …
Hack The Box - Magic
Initial is by doing a SQLI to bypass login. And File Upload Vulnerability, from there we can get a shell and find user creds in SQL database. And root is by path hijack attack. …
Hack The Box - Traceback
Traceback is really a good beginner friendly box, getting initial is to look for an existing webshell on the box. There is some sudo stuffs to get user shell and Privesc is by …
Hack The Box - Sizzle
This box is really fun and some Active Directory stuffs which is really good. Getting User is doing SCF attack and create certificate for the user and to get 2nd user we need to …
Hack The Box - Oouch
This box includes tons of enumeration and Initial is by exploiting OAuth by authoring the administrator and create our own application and get admin session ID and grab ssh key of …
Hack The Box - Cascade
Cascade is a Windows Medium box, which involves lot of enumeration and finding VNC credentials which can be decrypted and with that we need to find SQlite database and also a …
Hack The Box - Sunday
Getting Initial is by gathering usernames from Finger service and gusesing the password gives use user shell and We need to find backup shadow file to get user sammy’s …
Hack The Box - TarTarSauce
Getting Initial is by finding a vulnerable wordpress plugin and Privilege Escalation is exploiting a Custom script. Its really a fun box. Link: …
Hack The Box - Poison
Poison is an Medium box, getting initial is by finding the LFI and doing race condition or we can get the ssh password of the user directly by decoding the base64 and root is port …
Hack The Box - Sauna
Sauna is an easy AD machine, getting initial is by gathering usernames from the web and doing AS-REP Roasting, we can get a user’s hash. And winPEAS reveals …
Hack The Box - Book
Book is an Medium Linux Box, Getting Initial is login as admin by sql truncation method and then further exploiting it by Reflected XSS and getting user ssh keys. And Root is …
Hack The Box - Sense
We are going to pwn Sense from Hack The Box. Link: https://www.hackthebox.eu/home/machines/profile/111 Let’s Begin with our Initial Nmap Scan. Nmap Scan Results PORT STATE …
Hack The Box - Brainfuck
Getting User is by decrypting a cipher and getting the private key of user and I did root in unintended way, by using lxd for privilege escalation Link: …
Hack The Box - ForwardSlash
Getting Initial shell is finding a LFI in the subdomain and get the FTP password from that to get first user and second user is by tricking a binary and root is by mounting an …
Hack The Box - Bastard
Bastard is a Windows medium machine but its easy, Getting shell is exploiting Drupal by uploading a malicious php file and The machine is unpatched so Kernel exploit to get …
Hack The Box - ServMon
ServMon is an easy windows machine, Getting user is by exploiting Local File Inclusion from the website and get user password from his desktop and Privilege Escalation is by …
Hack The Box - Querier
Link: https://www.hackthebox.eu/home/machines/profile/175 Let’s Begin with our Initial Nmap Scan. Nmap Scan Results PORT STATE SERVICE VERSION 135/tcp open msrpc Microsoft …
Hack The Box - Giddy
Giddy is a medium windows box, getting initial shell is by grabbing the NTLMv2 hash of SMB from SQL injection. And Privilege escalation is by vulnerability in a software called …
Hack The Box - Silo
Silo is medium windows box, getting initial shell is by doing a oracle database attack and uploading a webshell and here I showed two methods of getting Administrator. One is …
Hack The Box - Monteverde
Monteverde was an Active Directory box, The Initial foothold we need to do password spray on to get initial shell. And we need to abuse the Azure active directory database to leak …
Hack The Box - Resolute
We are going to pwn Resolute which is an medium windows machine from Hack The Box. Link: https://www.hackthebox.eu/home/machines/profile/220 Let’s Begin with our Initial …
Hack The Box - Jeeves
We are going to pwn Jeeves from Hack The Box. Link: https://www.hackthebox.eu/home/machines/profile/114 Let’s Begin with our Initial Nmap Scan. Nmap Scan Results PORT STATE …
Hack The Box - Obscurity
We are going to pwn Obscurity from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/219 Like always begin with our Nmap Scan. Nmap Scan Results: PORT STATE …
Hack The Box - OpenAdmin
We are going to pwn OpenAdmin from Hack The Box. Link: https://www.hackthebox.eu/home/machines/profile/222 Like always begin with our Nmap Scan. Nmap Scan Results PORT STATE …
Hack The Box - Heist
We are going to pwn Heist from Hack The Box. Link: https://www.hackthebox.eu/home/machines/profile/201 Let’s Begin with our Initial Nmap Scan. Nmap Scan Results PORT STATE …
Hack The Box - Active
We are going to pwn Active from Hack The Box. Link: https://www.hackthebox.eu/home/machines/profile/148 Let’s Begin with our Initial Nmap Scan. Nmap Scan Results: PORT STATE …
Hack The Box - Forest
We are going to pwn Forest by egre55 & mrb3n from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/212 Let’s Begin with our Initial Nmap Scan. Nmap …
Hack The Box - Access
We are going to pwn Access from Hack The Box. Link: https://www.hackthebox.eu/home/machines/profile/156 Let’s Begin with our Initial Nmap Scan. Nmap Scan Results: PORT STATE …
Hack The Box - Bastion
We are going to pwn Bastion from Hack The Box. Link: https://www.hackthebox.eu/home/machines/profile/186 Let’s Begin with our Initial Nmap Scan. Nmap Scan Results: PORT …
Hack The Box - Jerry
We are going to pwn Jerry from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/144 Let’s Begin with our Initial Nmap Scan. Nmap Scan Results: PORT STATE …
Hack The Box - Netmon
We are going to pwn Netmon from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/177 Let’s Begin with our Initial Nmap Scan. Nmap Scan Results: PORT …
Hack The Box - Mango
We are going to pwn Mango from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/230 Let’s Begin with our Initial Nmap Scan. Nmap Scan Results: PORT STATE …
Hack The Box - Traverxec
We are going to pwn Traverxec by jkr from Hack The Box. Getting User shell is fun and by using GTFOBins correctly we can get Root easily. Link : …
Hack The Box - Celestial
We are going to pwn Celestial by 3ndG4me from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/130 Lets Begin with our Initial Nmap Scan. Nmap Scan Results: …
Hack The Box - Jarvis
We are going to pwn Jarvis from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/194 Lets Begin with our Initial Nmap Scan. Nmap Scan Results PORT STATE …
Hack The Box - Registry
We are going to pwn Registry by thek from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/213 Lets Begin with our Initial Nmap Scan. Nmap Scan Results: PORT …
Vulnhub - Djinn
Today, We are going to pwn Djinn by Mzfr from Vulnhub. Description: - Level: Beginner-Intermediate - flags: user.txt and root.txt - Description: The machine is VirtualBox as well …
Hack The Box - Postman
We are going to pwn Postman by TheCyberGeek from Hack The Box. I enjoyed the way to get user shell. Link : https://www.hackthebox.eu/home/machines/profile/215 Lets Begin with our …
Vulnhub - Symfonos 4
Today, We are going to pwn Symfonos 4 by Zayotic from Vulnhub Description: OSCP-like Intermediate real life based machine designed to teach people the importance of trying harder. …
Vulnhub - Symfonos 5
Today, We are going to pwn Symfonos 5 by Zayotic from Vulnhub Description: Beginner real life based machine designed to teach people the importance of understanding from the …
Hack The Box - SolidState
We are going to pwn SolidState from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/85 Lets Begin with our Initial Nmap Scan. Nmap Scan Results: PORT STATE …
Vulnhub - Symfonos 3
Today, We are going to pwn Symfonos 3 by Zayotic from Vulnhub Description: Intermediate real life based machine designed to test your skill at enumeration. If you get stuck …
Hack The Box - Apocalyst
We are going to pwn Apocalyst from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/57 Lets Begin with our Initial Nmap Scan. Nmap Scan Results: PORT STATE …
Vulnhub - Symfonos 2
Today, We are going to pwn Symfonos 2 by Zayotic from Vulnhub Description: OSCP-like Intermediate real life based machine designed to teach the importance of understanding a …
Hack The Box - Bounty
We are going to pwn Bounty from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/142 Lets Begin with our Initial Nmap Scan. Nmap Scan Results: PORT STATE …
Hack The Box - Blue
We are going to pwn Blue from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/51 Lets Begin with our Initial Nmap Scan. Nmap Scan Results: PORT STATE SERVICE …
Vulnhub - Symfonos 1
Today, We are going to pwn Symfonos 1 by Zayotic from Vulnhub Description: Beginner real life based machine designed to teach a interesting way of obtaining a low priv shell. …
Hack The Box - Granny
We are going to pwn Granny from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/14 Lets Begin with our Initial Nmap Scan. Nmap Scan Results: 80/tcp open http …
Hack The Box - Grandpa
We are going to pwn Grandpa from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/13 Lets Begin with our Initial Nmap Scan. Nmap Scan Results: PORT STATE …
Hack The Box - Arctic
We are going to pwn Arctic from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/9 Lets Begin with our Initial Nmap Scan. Nmap Scan Results: PORT STATE SERVICE …
Hack The Box - Optimum
We are going to pwn Optimum from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/6 Lets Begin with our Initial Nmap Scan. Nmap Scan Results PORT STATE SERVICE …
Hack The Box - Devel
We are going to pwn Devel from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/3 Lets Begin with our Initial Nmap Scan. Nmap Scan Results: PORT STATE SERVICE …
Hack The Box - Legacy
We are going to pwn Legacy from Hack The Box. Which is a windows box based on smb exploit and I have explained in two methods. Link : …
NeverLAN CTF 2020
NeverLAN CTF is a beginner friendly CTF . Me any my friend D4mianWayne did this together, it’s really fun and we enjoyed it. In this post I write a walkthrough for the CTF. …
Hack The Box - Nineveh
We are going to pwn Nineveh from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/54 Lets Begin with our Initial Nmap Scan. Nmap Scan Results PORT STATE …
Vulnhub - DC 9
Today, We are going to pwn DC 9 by DCAU7 from Vulnhub. Description: DC-9 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration …
Hack The Box - Europa
We are going to pwn Europa from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/27 Lets Begin with our Initial Nmap Scan. Nmap Scan Results: PORT STATE …
Hack The Box - Haircut
We are going to pwn Haircut from Hack The Box. Link :https://www.hackthebox.eu/home/machines/profile/21 Lets Begin with our Initial Nmap Scan. Nmap Scan Results: PORT STATE …
Hack The Box - Lazy
We are going to pwn Lazy from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/18 Lets Begin with our Initial Nmap Scan. Nmap Scan Results: PORT STATE SERVICE …
Hack The Box - Cronos
We are going to pwn Cronos from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/11 Like always begin with our Nmap Scan. Nmap Scan Results PORT STATE SERVICE …
Hack The Box - Popcorn
We are going to pwn Popcorn from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/4 Like always begin with our Nmap Scan. Nmap Scan Results: PORT STATE SERVICE …
Hack The Box - Tenten
We are going to pwn Tenten from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/8 Like always begin with our Nmap Scan. Nmap Scan Results: PORT STATE SERVICE …
Hack The Box - Networked
We are going to pwn Networked from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/203 Like always begin with our Nmap Scan. Nmap Scan Results PORT STATE …
Hack The Box - Haystack
We are going to pwn Haystack from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/195 Like always begin with our Nmap Scan. Nmap Scan Results: PORT STATE …
Hack The Box - Writeup
We are going to pwn WriteUp from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/192 Like always begin with our Nmap Scan. Nmap Scan Results: PORT STATE …
Hack The Box - Swagshop
We are going to pwn SwagShop from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/188 Like always begin with our Nmap Scan. Nmap Scan Results: PORT STATE …
Hack The Box - LaCasaDePapel
We are going to pwn LaCasaDePapel from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/181 Like always begin with our Nmap Scan. Nmap Scan Results: PORT STATE …
Hack The Box - Friendzone
We are going to pwn FriendZone from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/173 Like always begin with our Nmap Scan. Nmap Scan Results: PORT STATE …
Hack The Box - Help
We are going to pwn Help from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/170 Like always begin with our Nmap Scan. Nmap Scan Results: PORT STATE SERVICE …
Hack The Box - Teacher
We are going to pwn Teacher from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/165 Like always begin with our Nmap Scan. Nmap Scan Results: PORT STATE …
Hack The Box - Irked
We are going to pwn Irked from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/163 Like always begin with our Nmap Scan. Nmap Scan Results PORT STATE SERVICE …
Hack The Box - Curling
We are going to pwn Curling from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/160 Like always begin with our Nmap Scan. Nmap Scan Results: PORT STATE …
Hack The Box - Valentine
We are going to pwn Valentine from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/127 Like always begin with our Nmap Scan. Nmap Scan Results PORT STATE …
Hack The Box - Bashed
We are going to pwn Bashed from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/118 Like always begin with our Nmap Scan. Nmap Scan Results PORT STATE SERVICE …
Hack The Box - Nibbles
We are going to pwn Nibbles from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/121 Like always begin with our Nmap Scan. Nmap Scan Results PORT STATE …
Hack The Box - Mirai
We are going to pwn Mirai from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/64 Like always begin with our Nmap Scan. Nmap Scan Results PORT STATE SERVICE …
Hack The Box - Shocker
We are going to pwn Shocker from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/108 Like always begin with our Nmap Scan. Nmap Scan Results PORT STATE …
Hack The Box - Bank
We are going to pwn Bank from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/26 Like always begin with our Nmap Scan. Nmap Scan Results PORT STATE SERVICE …
Hack The Box - Blocky
We are going to pwn Blocky from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/48 Like always begin with our Nmap Scan. Nmap Scan Results PORT STATE SERVICE …
Hack The Box - Beep
We are going to pwn Beep from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/5 Lets Begin with our Initial Nmap Scan. Nmap Scan Results PORT STATE SERVICE …
Hack The Box - Lame
We are going to pwn Lame from Hack The Box. Link : https://www.hackthebox.eu/home/machines/profile/1 Lets Begin with our Initial Nmap Scan. Nmap Scan Results PORT STATE SERVICE …
Vulnhub - DC 8
Today, We are going to pwn DC 8 by DCAU7 from Vulnhub Description DC-8 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration …
Vulnhub - DC 7
Today, We are going to pwn DC 7 by DCAU7 from Vulnhub Description DC-7 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration …
Vulnhub - DC 6
br/ Today, We are going to pwn DC 6 by DCAU7 from Vulnhub Description DC-6 is another purposely built vulnerable lab with the intent of gaining experience in the world of …
Vulnhub - DC 5
Today, We are going to pwn DC 5 by DCAU7 from Vulnhub Description DC-5 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration …
Vulnhub - DC 4
We are going to pwn DC 4 by DCAU7 from Vulnhub Description DC-4 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration …
Vulnhub - DC 3
We are going to pwn DC 3 by DCAU7 from Vulnhub Description DC-3 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration …
Vulnhub - DC 2
Today, We are going to pwn DC 2 by DCAU7 from Vulnhub Description Much like DC-1, DC-2 is another purposely built vulnerable lab for the purpose of gaining experience in the world …
Vulnhub - Basic Pentesting 1
Today, We are going to pwn Basic Pentesting 1 from Vulnhub Description This is a small boot2root VM I created for my university’s cyber security group. It contains multiple remote …