Home

Home of Sarthak

13 Jul 2019

Hack the Box Nudges

This is my attempt at tracking all the vulnerabilities that I’ve come across while owning some of the HTB machines. My only motive here is to collate the resources enough to nudge HTB newbies in the right direction while not revealing the solutions. Happy hacking!

Traverxec:

  1. https://www.rapid7.com/db/modules/exploit/multi/http/nostromo_code_exec
  2. http://www.nazgul.ch/dev/nostromo_man.html

OpenAdmin:

  1. https://www.exploit-db.com/exploits/47691

Postman:

  1. https://packetstormsecurity.com/files/134200/Redis-Remote-Command-Execution.html
  2. https://www.exploit-db.com/exploits/46984