π [ ippsec, ippsec ]
#HackTheBox Acute video is now up! This was a tough Windows box with all the pivots between users. I decided to try out ConPtyShell to get a full PTY on Windows, had to do some light modifications to bypass Defender. https://t.co/hey5QSjGDr
π https://youtu.be/jDYte7xNY1g
π₯ [ tweet ]
#HackTheBox Acute video is now up! This was a tough Windows box with all the pivots between users. I decided to try out ConPtyShell to get a full PTY on Windows, had to do some light modifications to bypass Defender. https://t.co/hey5QSjGDr
π https://youtu.be/jDYte7xNY1g
π₯ [ tweet ]
π [ ippsec, ippsec ]
#HackTheBox StreamIO video is live, this box has an excellent primer on manually enumerating MSSQL Databases after a successful inject. Thereβs a lot more to the box than that like active director and LAPS.
https://t.co/of1Puv1EBR
π https://youtu.be/qKcUKlwoGw8
π₯ [ tweet ]
#HackTheBox StreamIO video is live, this box has an excellent primer on manually enumerating MSSQL Databases after a successful inject. Thereβs a lot more to the box than that like active director and LAPS.
https://t.co/of1Puv1EBR
π https://youtu.be/qKcUKlwoGw8
π₯ [ tweet ]
π€―1
π [ ippsec, ippsec ]
#HackTheBox Faculty video is up! Enjoyed abusing the ptrace capability with GDB to inject code into a running process. But my fav was an Unintended SQL Injection in an Update Statement because it teaches an important lesson on how dangerous type can be. https://t.co/y3VHiqHrYw
π https://www.youtube.com/watch?v=LGO-dn7668g
π₯ [ tweet ]
#HackTheBox Faculty video is up! Enjoyed abusing the ptrace capability with GDB to inject code into a running process. But my fav was an Unintended SQL Injection in an Update Statement because it teaches an important lesson on how dangerous type can be. https://t.co/y3VHiqHrYw
π https://www.youtube.com/watch?v=LGO-dn7668g
π₯ [ tweet ]
π [ ippsec, ippsec ]
#HackTheBox Outdated video is up! The box features Folina, Shadow Credentials, and some lateral movement by injecting a malicious windows update with SharpWSUS.
https://t.co/od5IlQk33s
π https://youtu.be/TR132R1h3Ds
π₯ [ tweet ]
#HackTheBox Outdated video is up! The box features Folina, Shadow Credentials, and some lateral movement by injecting a malicious windows update with SharpWSUS.
https://t.co/od5IlQk33s
π https://youtu.be/TR132R1h3Ds
π₯ [ tweet ]
π₯4
Iβve missed the moment when the Ascension Endgame has been retired on @hackthebox_eu, but finally, hereβs my write-up:
π https://snovvcrash.rocks/2024/04/30/htb-ascension.html
This blog has been waiting its time in my drafts for almost 3 years now, and for me, this Endgame is still the best advanced lab on #HackTheBox. Many thanks to @egre55, @0_trx and all the @hackthebox_eu team!
P. S. Itβs so cringe to read your own 3-year-old notes π€¦π»ββοΈπ
π₯ [ tweet ]
Please open Telegram to view this post
VIEW IN TELEGRAM
Please open Telegram to view this post
VIEW IN TELEGRAM
π11π₯±2π₯1