CTF writeups

Walkthrough for some of the boxes I am doing while preparing for OSCP.

Tj_null's List :

I will be doing boxes mostly from this list as well as some extras.

PG walkthroughs:

Machine	OS	Rating	Remarks
Internal	Windows	Warmup(10)	CVE, Easy exploitation, No Privilege escalation
Pebbles	Linux	Warmup(10)	CVE, SQLmap, No Privilege Escalation
Bratarina	Linux	Warmup(10)	CVE, Easy, No privilege escalation
Wombo	Linux	Warmup(10)	CVE, metasploit, No P.E
Clamav	Linux	Warmup(10)	CVE, No P.E
Exfiltrated	Linux	Warmup(10)	CVE, Vulnerable CMS, weak credential, cronjob, Vulnerable application (exiftool)
Metallus	Windows	Warmup(10)	CVE, Authenticated RCE, No P.E
KEVIN	Windows	Warmup(10)	walkthrough in progress
Algernon	Windows	Warmup(10)	walkthrough in progress
Hunit	Linux	Get2Work(20)	Sensitive information disclosure through api , Weak permission which leads to exploiting cronjob for P.E
Dibbles	Linux	Get2Work(20)	Cookie manipulation, command injection to RCE. Exploiting SUID for P.E
Zino	Linux	Get2Work(20)	Enumeration, CVE, Exploit cronjob for P.E
Hetemit	Linux	Get2Work(20)	Command Injection, Insecure permission, Exploit service file to get P.E
Postfish	Linux	Get2Work(20)	SMTP, Phising, Insecure file permission and sudo misconfiguration.
Payday	Linux	Get2Work(20)	Weak Credential, CVE, File upload, Sudo misconfiguration
Sybaris	Linux	Get2Work(20)	Anonymous login, Redis load module, Cronjob, ld_library_path
Peppo	Linux	TryHarder(25)	Weak Credential, Docker Escape for P.E

Vulnhub Walkthroughs:

Machine name	os	Remarks
Devguru	Linux	Like OSCP, web, exposed git, CVE, command injection, sudo misconfiguration,
DC: 9	Linux	Like OSCP, SQLi, LFI, Bruteforcing SSH, Sensitive information disclosure, Vulnerable script with sudo privilege.

Hackthebox:

Coming soon