Hackthebox – Waldo Writeup

This is a write-up for the Waldo machine on hackthebox.eu which was retired on 12/15/18! Step 1: enumerate! Run an automated scan with this script: https://github.com/vishalb2308/Pentest-Enumeration-Script/blob/master/EnumScript.py or something like: nmap -sC -sV -oA /tmp/nmap1.txt -Pn 10.10.10.87 Which should result in something like this: We type in 10.10.10.87 in the browser and this shows up: At […]

Read More

Hackthebox – Jerry Writeup

This is a write-up for the Jerry machine on hackthebox.eu which was retired on 11/17/18! First we start with a nmap scan: map -sC -sV -Pn 10.10.10.95 8080 is open: 8080/tcp open http Apache Tomcat/Coyote JSP engine 1.1 |_http-favicon: Apache Tomcat |_http-server-header: Apache-Coyote/1.1 |_http-title: Apache Tomcat/7.0.88 We go to the page by going to http://10.10.10.95:8080 […]

Read More

Hackthebox – DevOops Writeup

This is a writeup for the DevOops machine on hackthebox.eu which was retired on 10/13/18! First, enumerate! Let’s try the custom python enumeration script a friend of ours made: https://github.com/vishalb2308/Pentest-Enumeration-Script/blob/master/EnumScript.py The nmap part of the script indicates that: ports 22 and 5000 are open ssh is on 22 and supports publickey and password authentication Server […]

Read More

Hackthebox – Canape Writeup

This is a writeup for the Canape machine on hackthebox.eu which was retired on 9/15/18! First, enumerate! Let’s try the custom python enumeration script a friend of ours made: https://github.com/vishalb2308/Pentest-Enumeration-Script/blob/master/EnumScript.py We find that port 80 is open and the page looks something like this: nmap (with command nmap -sC -sV 10.10.10.70) indicated that there was […]

Read More