RustyKey HackTheBox RustyKey is a hard difficulty Windows Machine which showcases a Timeroasting Attack, Active Directory ACL abuse following Windows Group Policy Enumeration to abuse the 7-Zip Sh...

DarkCorp HackTheBox DarkCorp is an Insane-difficulty Windows machine with several computers joined. The initial foothold involves exploiting CVE-2024-42009, an XXS vulnerability and IDOR in RoundC...

Sizzle HackTheBox Sizzle is an insane machine from HackTheBox, which is exploitable by 2 main unintended vulnerabilities. We start of with a guest share that is world readable and a folder in it w...

Ghost HackTheBox Ghost is an Insane Windows Active Directory machine that starts with an LDAP injection that an attacker can exploit to leak the credentials for a Gitea instance. Looking through t...

Rebound HackTheBox Rebound is an Insane Windows machine featuring a tricky Active Directory environment. User enumeration via RID cycling reveals an AS-REP-roastable user, whose TGT is used to Ker...

Multimaster HackTheBox Multimaster is an insane difficulty Windows machine featuring a web application that is vulnerable to SQL Injection. This vulnerability is leveraged to obtain the foothold o...

Mist HackTheBox Mist is an Insane difficulty machine that provides a comprehensive scenario for exploiting various misconfigurations and vulnerabilities in an Active Directory (AD) environment. Th...

Logging HTB Writeup Logging is medium rated machine on HackTheBox which is a Active Directory environment. Machine’s currently live on HTB, Do it on your own and stop looking at writeups when t...

CityCouncil HackSmarter CityCouncil is a medium rated Active directory machine which is based on Active Directory and this challenge involves multiple exploitation paths which leads to full domain...

Anomaly HackSmarter Anomaly is a medium based lab which consists of 2 machines one is running unix and another is windows as the domain controller. We start of with the linux box which is running ...