writeup
-
Read more: Protected: GreenHorn – Hack The Box – @lautarovculic
There is no excerpt because this is a protected post.
-
Read more: Protected: PermX – Hack The Box – @lautarovculic
There is no excerpt because this is a protected post.
-
Read more: Protected: Blazorized – Hack The Box – @lautarovculic
There is no excerpt because this is a protected post.
-
Read more: Protected: Axlle – Hack The Box – @lautarovculic
There is no excerpt because this is a protected post.
-
Read more: Protected: Editorial – Hack The Box – @lautarovculic
There is no excerpt because this is a protected post.
-
Read more: Protected: Blurry – Hack The Box – @lautarovculic
There is no excerpt because this is a protected post.
-
Read more: Joker – Hack The Box – @lautarovculic
Difficult: Hard Category: Mobile OS: Android Description: The malware reverse engineering team got an alert about malware which is still published on Google’s PlayStore and has thousands of installs. Can you help them to identify the address of the command and control server in order to blacklist it ? Download and extract the .zip file…
-
Read more: Protected: Freelancer – Hack The Box – @lautarovculic
There is no excerpt because this is a protected post.
-
Read more: Explore – Hack The Box – @lautarovculic
User.txt Let’s check the open ports with nmap sudo nmap -sV -p- -Pn -vv -T4 10.10.10.247 Output: PORT STATE SERVICE REASON VERSION 2222/tcp open ssh syn-ack ttl 63 Banana Studio SSH server app (net.xnano.android.sshserver.tv) (protocol 2.0) 5555/tcp filtered freeciv no-response 46243/tcp open unknown syn-ack ttl 63 59777/tcp open http syn-ack ttl 63 Bukkit JSONAPI httpd…
-
Read more: APKrypt – Hack The Box – @lautarovculic
Difficult: Easy Category: Mobile OS: Android Description: Can you get the ticket without the VIP code? Download the zip file and extract with the hackthebox password. There are a README.txt file that say Install this application in an API Level 29 or earlier (i.e. Android 10.0 (Google APIs)). Decompile the apk with apktool apktool d…