Recent Activity

Activity List

  • HanzCoder joined.
    Welcome Aboard!
    1:53AM
  • Welcome Aboard!
    September 22
  • p4yl0ad changed their profile picture.
    Thumbnail
    September 23
  • 4vr4k0705, 0xRh1d0Y, Ogooluwa, jwpepper152, salt418 and 4 others joined.
    Welcome Aboard!
    September 21
  • zinian, FireisBorn and kur0n joined.
    Welcome Aboard!
    September 20
  • Arakiba changed their profile picture.
    Thumbnail
    September 21
  • Stimpie
    You asked for "a hint" on Forge on my wall. I made a whole comment here: https://forum.hackthebox.eu/discussion/comment/98504#Comment_98504

    If you need a deeper hint ask me the specifics, what you have tried so far and what didn't work.
    September 21
  • CyberRobotX
    Hey bro, Any hint .. I got admin.forge.htb sub-domain and I know there's Server-Side Request Forgery (SSRF) Vulnerability I should exploit it on the server to access the sub-domain but I'm completely struggling, any help :'(
    September 20
  • Welcome Aboard!
    September 19
  • CyberRobotX
    I need hint in forge
    September 19
  • CyberRobotX
    I got the admin.forge.htb subdomain any hint ?
    September 19
  • CyberRobotX
    Hint plz
    September 19
  • CyberRobotX
    Hey I wanna a hint in Forge plz
    do you mean 127.0.0.1 that I should think about when I see a thing dealing with URL ?
    September 19
  • CyberRobotX
    Any hint for user plz
    September 19
  • CyberRobotX
    Any Hints plz
    September 19
  • twr000, CtrlAltDft, 96nuko, EkkiEkkiPtang, continent and 11 others joined.
    Welcome Aboard!
    September 18
  • kaixeb changed their profile picture.
    Thumbnail
    September 18
  • EF3X0S changed their profile picture.
    Thumbnail
    September 17
  • Crow changed their profile picture.
    Thumbnail
    September 17
  • Welcome Aboard!
    September 16
  • t0nyR1T3 changed their profile picture.
    Thumbnail
    September 17
  • human
    hi bro, congrats on completing the box. I have user kyle on the box. For root I know I need to reverse the authenticator binary. Currently, rusk binary is kicking my ass. I did reverse it using ghidra and know the IV and key (may not be in right order) but beyond that I am totally stuck. i will appreciate a big nudge. I tried angr as well but that fails with std::out_of_range error.
    September 17
  • Welcome Aboard!
    September 15
  • vatta changed their profile picture.
    Thumbnail
    September 16
  • Stimpie
    Hey,

    For the Horizontall box you need to add your local ssh key to the box and make sure it is authorized ;)
    September 15
  • Welcome Aboard!
    September 14
  • Welcome Aboard!
    September 13
  • Synful changed their profile picture.
    Thumbnail
    September 14
  • Welcome Aboard!
    September 12
  • Player3
    Hey dude, I've just got the user on the machine Anubis.
    I was wondering if you could give me any nudges for the privesc for root/admin?

    I've noticed there's some installation tasks, where I think I might be able to create my own install task, and tell it to install a bad.exe file, such as nc, but I've had no luck with doing that.
    I also saw that the user is part of a webdevelopers group, but I really haven't found much else with enumerating.

    Could you please give me a nudge in the right direction? And possibly suggest some enumeration tools you commonly use for windows post exploitation, as I'm very much a Windows noob and only really go for Linux machines.

    Cheers,

    Player3.
    September 13

Howdy, Stranger!

Click here to create an account.