Skip to content

README.md

Latest commit

 

History

History
68 lines (45 loc) · 2.44 KB

README.md

File metadata and controls

68 lines (45 loc) · 2.44 KB

HackTheBox Writeups

A collection of my personal writeups for retired HackTheBox machines. Each writeup documents the full attack path — from initial reconnaissance through privilege escalation — with detailed explanations of the vulnerabilities exploited and the methodology used.

About Me

I'm an aspiring penetration tester actively working through HackTheBox machines to sharpen my offensive security skills. These writeups serve as both personal reference notes and a resource for others in the community learning the same concepts.

Every week a new machine is released as part of HackTheBox Season 11. I solve each machine and publish the writeup here after it has been officially retired.

Methodology

My general approach follows a structured penetration testing methodology:

  1. Reconnaissance — Port scanning, service enumeration, version detection
  2. Vulnerability Research — Identifying CVEs and weaknesses based on discovered services
  3. Exploitation — Gaining initial foothold
  4. Post-Exploitation — Enumeration for privilege escalation vectors
  5. Privilege Escalation — Escalating to root
  6. Documentation — Writing up the full chain with commands and explanations

Writeups

All writeups are published only after the machine has been officially retired by HackTheBox.

Season 11

Machine OS Difficulty Tags
Connected Linux Easy SQLi FreePBX CVE-2025-57819 incron modprobe
Reactor Linux Easy Next.js RSC CVE-2025-55182 Node.js Inspector SSH Tunneling
DevHub Linux Medium MCP CVE-2026-23744 Jupyter SSH Pivoting Hardcoded API Key
Checkpoint Windows Medium Active Directory LDAP BadSuccessor dMSA Memory Forensics Pass-the-Hash

Tools Used

  • Nmap
  • Burp Suite
  • Netcat
  • Hashcat
  • SQLite3
  • Python (custom exploit scripts)
  • SSH tunneling
  • Chrome DevTools (Node.js Inspector)
  • bloodyAD
  • Evil-WinRM
  • VMKatz / MemProcFS

Disclaimer

These writeups are intended purely for educational purposes. All machines are retired HackTheBox machines. I do not condone unauthorized access to systems. Always practice ethical hacking in legal environments.

Contact