PHP

Hack The Box: Environment Machine Walkthough-Medium Difficulty

by darknite
2025-09-06

Environment HTB: Full User & Root Flag Capture Through Exploitation

Captured both the user and root flags on the Environment HTB machine! We exploited Laravel 11.30.0 (PHP 8.2.28) vulnerabilities, including argument injection (CVE-2024-52301) and UniSharp Laravel Filemanager code injection. By bypassing authentication with `–env=preprod` and leveraging the profile upload feature, we executed a PHP reverse shell and retrieved the user flag via `cat user.txt`. For root access, we decrypted `keyvault.gpg` from the `.gnupg` directory to obtain credentials and exploited sudo with preserved BASH\_ENV by crafting a script that spawned a privileged shell, ultimately gaining full control of the system.

#CyberSecurity #HTB #PenTesting #EthicalHacking #LaravelExploits #PrivilegeEscalation #PHP #Infosec #BugBounty #RedTeam

Hack The Box: Dog Machine Walkthrough (Easy Difficulty)

by darknite
2025-07-12

Exploited exposed credentials in a .git repository to access Backdrop CMS, then used a remote command execution vulnerability (EDB-ID: 52021) for a reverse shell. Escalated to root by leveraging a misconfigured bee binary with sudo privileges, capturing both user and root flags.

#Cybersecurity #HackTheBox #PenetrationTesting #CTF #WebExploitation #PrivilegeEscalation #EthicalHacking #InfoSec #CyberSec #Hacking

Hack The Box: Trickster Machine Walkthrough – Medium Difficulty

by darknite
2025-02-01

Introduction to Trickster: In this write-up, we will explore the “Trickster” machine from Hack The Box, categorized as a medium-difficulty challenge. This walkthrough will cover… Read More »Hack The Box: Trickster Machine Walkthrough – Medium Difficulty

Hack The Box: Sightless Machine Walkthrough – Easy Difficulty

by darknite
2025-01-15

Introduction to Sightless: In this write-up, we will explore the “Sightless” machine from Hack the Box, categorized as an easy difficulty challenge. This walkthrough will… Read More »Hack The Box: Sightless Machine Walkthrough – Easy Difficulty

Hack The Box: Analysis Machine Walkthrough – Hard Difficulty

by darknite
2024-06-01

In this post, I would like to share a walkthrough of the Analysis Machine from Hack the Box This room will be considered a Hard machine on Hack the Box… Read More »Hack The Box: Analysis Machine Walkthrough – Hard Difficulty

Hack The Box: Cerberus Machine Walkthrough – Hard Difficulty

by darknite
2023-07-30

In this post, I would like to share a walkthrough of the Cerberus Machine from Hack the Box This room will be considered a Hard machine… Read More »Hack The Box: Cerberus Machine Walkthrough – Hard Difficulty

Hack The Box: Soccer Machine Walkthrough – Easy Difficulty

by darknite
2023-06-11

In this post, I would like to share a walkthrough of the Soccer Machine from Hack the Box This room will be considered an Easy machine… Read More »Hack The Box: Soccer Machine Walkthrough – Easy Difficulty

Hack The Box: Interface Machine Walkthrough – Medium Difficulty

by darknite
2023-05-13

In this post, I would like to share a walkthrough of the Interface Machine from Hack the Box This room will be considered a medium machine… Read More »Hack The Box: Interface Machine Walkthrough – Medium Difficulty

Hack The Box: Metatwo Machine Walkthrough – Easy Difficulty

by darknite
2023-04-30

In this post, I would like to share a walkthrough of the Metatwo Machine from Hack the Box This room will be considered a medium machine… Read More »Hack The Box: Metatwo Machine Walkthrough – Easy Difficulty

Hack The Box: Encoding Machine – Medium Difficulty

by darknite
2023-04-16

In this post, I would like to share a walkthrough of the Encoding Machine from Hack the Box This room will be considered a medium machine… Read More »Hack The Box: Encoding Machine – Medium Difficulty