Impersonation

Hack The Box - Silo

Ghostbyt3 HackTheBox 12 min read
Silo is medium windows box, getting initial shell is by doing a oracle database attack and uploading a webshell and here I showed two methods of getting Administrator. One is using Volatility and the …
Read more…

Hack The Box - Jeeves

Ghostbyt3 HackTheBox 6 min read
We are going to pwn Jeeves from Hack The Box. Link: https://www.hackthebox.eu/home/machines/profile/114 Let’s Begin with our Initial Nmap Scan. Nmap Scan Results PORT STATE SERVICE VERSION 80/tcp open http Microsoft IIS httpd 10.0 | http-methods: |_ Potentially risky methods: TRACE |_http-server-header: Microsoft-IIS/10.0 |_http-title: Ask Jeeves 135/tcp open msrpc Microsoft Windows RPC …
Read more…