• Search for:

    Tag Archives: XSS

    1. Home  - 
    2. Posts tagged "XSS"
    28 Feb, 2026
    Hack The Box: Guardian Machine Walkthrough – Hard Difficulty
    Hard Machine , , , , , , , , , , , ,

    🔐 User Flag — Compromising the Application Layer

    Successfully rooted the Guardian (Hard) machine on Hack The Box by chaining multiple real-world web vulnerabilities.Initial access was achieved through credential abuse and IDOR within the student portal. Leaked chat credentials exposed internal Gitea repositories containing hardcoded database secrets. A vulnerable XLSX file upload feature allowed formula injection → XSS → session hijacking. Leveraging CSRF, I created a rogue admin account and escalated privileges within the application. From there, an LFI vulnerability combined with a PHP filter chain led to Remote Code Execution. After gaining a shell as www-data, I reused leaked credentials to pivot laterally to user jamil, capturing the user flag.

    👑 Root Flag — From Code Injection to Full System Compromise

    Privilege escalation started with sudo -l, revealing that jamil could execute a Python utility as user mark without a password. Since one of the Python files was writable, I injected code to spawn a shell as mark. Further enumeration uncovered a custom binary (safeapache2ctl) executable as root. A flawed validation mechanism in its Apache config parsing allowed path traversal and arbitrary file inclusion. By crafting a malicious shared object (evil.so) and abusing the wrapper’s improper include validation, I achieved root-level code execution and obtained a root shell. …

    Learn MoreHack The Box: Guardian Machine Walkthrough – Hard Difficulty

    22 Mar, 2025
    Hack The Box: Alert Machine Walkthrough – Easy Difficulty
    Easy Machine , , , , , , , , , , ,

    We discovered an XSS vulnerability in .md file uploads and the Contacts tab. By embedding an XSS payload and sharing the link, we extracted data from messages.php, revealing a file parameter vulnerable to LFI. This led us to /var/www/statistics.alert.htb/.htpasswd, which contained a hashed password. Using hashid, we identified it as MD5 (APR1-MD5) and cracked it with Hashcat, retrieving the password ManchesterUnited. With these credentials, we accessed the system and captured the user flag.

    After logging into statistics.alert.htb, we found port 8080 open. Using SSH port forwarding, we accessed a monitoring site but needed to locate its directory. Checking ps aux, we found it in /opt/website-monitor. We confirmed file access by testing a basic PHP file, which worked. We then uploaded a PentestMonkey reverse shell, but it didn’t execute. To ensure success, we crafted a reliable PHP shell, triggered it, and gained root access.

    🔍 #CyberSecurity #BugBounty #EthicalHacking #PenTesting #CTF #HTB #WebSecurity #XSS #LFI #PrivilegeEscalation #Hacking …

    Learn MoreHack The Box: Alert Machine Walkthrough – Easy Difficulty

    8 Feb, 2025
    HackTheBox:MagicGardens Machine Walkthrough-Insane Difficulty
    Insane Machine , , , , , , , , , , , , , ,

    Introduction to MagicGardens: This write-up will explore the “MagicGardens” machine from Hack The Box, which is categorized as an insanely difficult challenge. This walkthrough will cover the reconnaissance, exploitation, and privilege escalation steps required to capture the flag. Objective on

    Continue ReadingHackTheBox:MagicGardens Machine Walkthrough-Insane Difficulty

    25 Jan, 2025
    Hack The Box: Caption Machine Walkthrough – Hard Difficulty
    Hard Machine , , , , , , , , , , , ,

    Introduction to Caption: This write-up will explore the “Caption” machine from Hack The Box, which is categorized as a Hard difficulty challenge. This walkthrough will cover the reconnaissance, exploitation, and privilege escalation steps required to capture the flag. Objective: The

    Continue ReadingHack The Box: Caption Machine Walkthrough – Hard Difficulty

    21 Dec, 2024
    Hack The Box: Sea Machine Walkthrough – Easy Difficulty
    Easy Machine , , , , , , , , , ,

    Introduction to Sea: This write-up will explore the “Sea” machine from Hack The Box, categorized as an easy difficulty challenge. This walkthrough will cover the reconnaissance, exploitation, and privilege escalation steps required to capture the flag. Objective: The goal of

    Continue ReadingHack The Box: Sea Machine Walkthrough – Easy Difficulty

    14 Sep, 2024
    Hack the Box: Intuition Machine Walkthrough – Hard Diffucility
    Hard Machine , , , , , , , , , , , ,

    Introduction to Intuition: In this write-up, we will explore the “Intuition” machine from Hack The Box, categorized as a Hard difficulty challenge. This walkthrough will cover the reconnaissance, exploitation, and privilege escalation steps required to capture the flag. Objective: The

    Continue ReadingHack the Box: Intuition Machine Walkthrough – Hard Diffucility

    17 Aug, 2024
    Hack The Box – Formulax Machine Walkthrough (Hard Difficulty)
    Hard Machine , , , , , , , , , , , , , , ,

    Introduction to Formulax: This walkthrough will explore the “Formulax” machine from Hack the Box, categorized as a Hard difficulty challenge. This walkthrough will cover the reconnaissance, exploitation, and privilege escalation steps required to capture the flag. Objective: The goal of

    Continue ReadingHack The Box – Formulax Machine Walkthrough (Hard Difficulty)