Skip to content

OffSecNewbie.com

My Offensive Security Journey

April 14, 2018

Inception – HacktheBox

LEARNED Using a proxy with nikto Gobuster can not search recursively Searchsploit can search output of nmap   START What ports are open on this machine [root:~/Desktop/inception]# nmap -p- 10.10.10.67 -T5 Starting Nmap 7.70 ( https://nmap.org ) at 2018-04-12 09:54 BST Nmap scan report for 10.10.10.67 Host is up, received echo-reply ttl 63 (0.034s latency). Not shown: 65533 filtered ports...

Categories Hackthebox Comments: 0
April 11, 2018

Nibbles – Hackthebox

Skills Required Basic knowledge of Linux Enumerating ports and services Skills Learned Very Basic scripting Web enumeration Exploiting NOPASSWD START Nmap scan revealed 2 open ports 22 and 80 [root:~]# nmap -p- -f 10.10.10.75 Starting Nmap 7.70 ( https://nmap.org ) at 2018-04-16 12:10 BST Nmap scan report for 10.10.10.75 Host is up, received echo-reply ttl 63 (0.032s latency). Not shown:...

Categories Hackthebox Comments: 0
April 11, 2018

Poison – Hackthebox

Skills Required
Basic knowledge of Linux
Enumerating ports and services
Basic understanding of cryptography

Skills Learned
SSH Tunneling
VNCViewer commands
Grep -vE to select non-matching lines

Categories Hackthebox Comments: 4
April 4, 2018

Bashed – Hackthebox

Skills Required Basic knowledge of Linux Enumerating ports and services Skills Learned Very Basic scripting Exploiting NOPASSWD Exploiting cron jobs START I checked to see what ports were open: Scanned all ports, scan with default NSE scripts (Considered useful for discovery and safe) and what version a service is running on that port. [root:~]# nmap -p- -sC -sV 10.10.10.68 Starting...

Categories Hackthebox Comments: 6

Posts navigation

  • «
  • 1
  • 2
  • 3
  • 4
  • 5
  • 6

A Quick Intro

modem dial-up tone....Hello Internet Person. I’m using this site to document my journey into Information Security and Cyber Security by doing CTFs. I hope that you will find some useful tips and tricks. Please feel free to leave me comments on how you completed a challenge or more likely, point out where I went wrong. Thank yo…someone lifted the phone

Password Protected Posts

Some pages are password protected for 1 of 2 reasons. Either I have not finished the box or I have in which case the password is the root flag of the machine. The password protection will be removed once the machine has been retired.

Progress

Categories

  • Hackthebox
  • Live
  • Progress Bar
  • Proving Grounds
  • tryhackme.com
  • Uncategorized
  • Useful things
  • Wizard Labs

Recent Posts

  • New Reverse Shell Generator Page
  • Vulnhub BrokenGallery Live
  • VulnHub Sunset Midnight
  • Vulnhub Sar Live
  • Vulnhub Sunset Decoy

Recent Comments

  • otario on New Reverse Shell Generator Page
  • durja on New Reverse Shell Generator Page
  • rowbot on Pentesting Guide
  • parth on Pentesting Guide
  • Jose Campo on Tryhackme.com Skynet

Pages

  • Vulnerability Scanning Service

©2022 OffSecNewbie.com

Back To Top
 

Loading Comments...