https://elleuchx1.github.io/Personal Security Blog. 2024-03-06T11:59:20+01:00 ElleuchX1 https://elleuchx1.github.io/ Jekyll © 2024 ElleuchX1 /assets/img/favicons/favicon.ico /assets/img/favicons/favicon-96x96.png 2022-12-05T00:00:00+01:00 2022-12-29T20:06:56+01:00 https://elleuchx1.github.io/posts/Fullpwn-STF/ ElleuchX1

Fullpwn Solutions from STACK The Flags CTF

2022-04-17T00:00:00+01:00 2022-12-29T20:06:56+01:00 https://elleuchx1.github.io/posts/Ezchall-crewctf/ ElleuchX1

Blind SSTI with filters

2021-07-17T00:00:00+01:00 2022-12-29T21:14:19+01:00 https://elleuchx1.github.io/posts/htb-breadcrumbs/ ElleuchX1

Here's my writeup for the RETIRED machine Breadcrumbs, Which is an hard Windows machine!

2021-07-10T00:00:00+01:00 2022-12-29T21:37:34+01:00 https://elleuchx1.github.io/posts/htb-atom/ ElleuchX1

Here's my writeup for the RETIRED machine Atom, Which is a Medium Windows machine!

2021-04-25T00:00:00+01:00 2022-12-29T20:36:22+01:00 https://elleuchx1.github.io/posts/htb-academy/ ElleuchX1

Information Gathering Nmap scan sudo nmap -sC -sV -T5 -oA nmap -O -A -v 10.10.10.215 As we see we have 2 ports open SSH on port 22 running OpenSSH 8.2p1 http on port 80 running httpd 2.4.41 we notice as well the academy.htb domain, which we should add to /etc/hosts. Gobuster scan gobuster dir -w /opt/SecLists/Discovery/Web-Content/raft-medium-files.txt -u http://academy.htb -x php ...