130n@calvinlai.com

About Calvin Lai (fkclai)
My Work
Exploit/CVE PoC
Hacking Report (HTB)
Secure Coding Principles
Penetration Testing Checklists
Red Team (Windows)
Exploitation Guide
Vuln Hub (Writeup)
CTF (Writeup & Tips)
Useful Command/Tools
Offensive Security Lab & Exam
- Lab
- Tools for an Offensive Certification
  - Strategy for an Offensive Exam Certification
    CVEs
    Privilege Escalation
    Commands
    Impacket

Powered by GitBook

Hits & Summary

Hack the Box, try harder and harder

PreviousTwitter Control an RCE attack NextTools & Cheat Sheet

Last updated 7 months ago

On this page

Was this helpful?

Name

Skill

Initial Flag

Root Privilege

Ready - Linux (Medium)

CVE +

Docker Container

CVE - RCE

Docker Container Escape

Blackfield - Windows (Hard)

AD Enum

Kerberos pre-authentication +

Less.dmp analysis +

NTLM hash

Using the backup account to gain access to NTDS.dit

Love - Windows (Easy)

PHP exploit, Windows PE

PHP exploit

Windows PE - AlwaysInstallElevated Policy

CAP - Linux

(Easy)

Wireshark + Linux PE (SUID)

pcap analysis - FTP password disclosed

SUID (Capabilities )

BountyHunter - Linux (Easy)

XXE + python hacking

XXE

Sudo, with python hacking script