I just pwned Protected on Hack The Box! https://labs.hackthebox.com/achievement/challenge/2026525/1087 #HackTheBox #HTB #CyberSecurity #EthicalHacking #InfoSec #PenTesting
#HackTheBox
Big shoutout and huge thank you to speakers for their presentations yesterday at the SpaceCoastSec year-end bash, Hack the Box Meetup Melbourne, FL for providing the CTF and award vouchers, and all of the attendees who make this community great. Without all of you, we would not have this community. We look forward to seeing everyone in the new year. Happy Holidays! #spacecoast #brevard #hackthebox #buildingcommunity #infosec #cybersecurity
I just pwned Breaking Bank on Hack The Box! https://labs.hackthebox.com/achievement/challenge/2026525/856 #HackTheBox #HTB #CyberSecurity #EthicalHacking #InfoSec #PenTesting
I just pwned Indefinite on Hack The Box! https://labs.hackthebox.com/achievement/challenge/2026525/354 #HackTheBox #HTB #CyberSecurity #EthicalHacking #InfoSec #PenTesting
I just pwned Blackout Ops on Hack The Box! https://labs.hackthebox.com/achievement/challenge/2026525/930 #HackTheBox #HTB #CyberSecurity #EthicalHacking #InfoSec #PenTesting
I just pwned Celestial Scribe on Hack The Box! https://labs.hackthebox.com/achievement/challenge/2026525/1003 #HackTheBox #HTB #CyberSecurity #EthicalHacking #InfoSec #PenTesting
I just pwned ReactOOPS on Hack The Box! https://labs.hackthebox.com/achievement/challenge/2026525/1081 #HackTheBox #HTB #CyberSecurity #EthicalHacking #InfoSec #PenTesting
I just pwned MonitorsFour on Hack The Box! https://labs.hackthebox.com/achievement/machine/2026525/814 #HackTheBox #HTB #CyberSecurity #EthicalHacking #InfoSec #PenTesting
Just dropped our writeup for MonitorsFour 🖥️ here: https://kaizenl.ink/5zen6j
A Windows machine featuring:
🔹 API IDOR for credential leakage
🔹 RCE via Cacti (CVE-2025-24367)
🔹 System compromise via Docker API escape
One thing which really gives me pleasure doing boxes or CTFs is that there is so many different knowledge coming together. Sometimes I can feel my brain light up. (I wish I could get a fMRI of it ;) ).
Doing it in a group is also awesome, because everyone has different ideas and ways to think. So much fun :) (But I'm way too uncomfortable just joining a group of unknown people on Discord or so. Lucky for me I'm part of a small team.)
HackTheBox | Сезонное прохождение — Gavel
Перед началом разбора хочу отметить, что это один из моих первых writeup'ов в рамках сезонного ивента Season of the Gacha на HackTheBox. Машина Gavel оказалась весьма интересной и познавательной, но также она заставляет немного приложить усилий, терпения и логики. Не скажу, что у меня не было проблем с прохождением, но я думаю, что испытал внутреннее удовлетворение после прохождении, давайте приступим!
https://habr.com/ru/articles/974030/
#пентест #хакерство #hackthebox #ctf #pentesting #кибербезопасность #информационная_безопасность #sql_injection #sqlинъекции #повышение_привилегий
I just pwned Untrusted Node on Hack The Box! https://labs.hackthebox.com/achievement/challenge/2026525/1063 #HackTheBox #HTB #CyberSecurity #EthicalHacking #InfoSec #PenTesting
Gibt eigentlich eine deutsche Variante von #Codedex bzw. #Hackthebox?
HTB's new AI Range lets organizations test autonomous AI security agents with human oversight! Apparently, AI aced 19/20 basic challenges but struggled with multi-step complexity. Looks like the humans aren't entirely obsolete yet. What's your take on AI in cybersecurity?
I just pwned SokobanHTB on Hack The Box! https://labs.hackthebox.com/achievement/challenge/2026525/1036 #HackTheBox #HTB #CyberSecurity #EthicalHacking #InfoSec #PenTesting
I just pwned Gavel on Hack The Box! https://labs.hackthebox.com/achievement/machine/2026525/811 #HackTheBox #HTB #CyberSecurity #EthicalHacking #InfoSec #PenTesting
Just setting up some automated tests, where i need to connect some virtual serial ports of #qemu processes.
I noticed that my #socat skills have become quite rusty.
A sign that it's time for some #ctf fun and to pop some shells. Any suggestion? Where do you play these days? Is #hackthebox still a place go?
With the Era box on #HTB retired I now finally can publish my writeup of this box
https://blog.maschmi.net/era-htb/
Thank you @mkalmes for reading it a few months ago and for the feedback on it. It helped me going forward with this!
I also submitted it as a community supplied walkthrough. Now I wait and hope it will be accepted 🤞
Just dropped our writeup for HackTheBox Gavel on 🔨
A Medium Linux machine featuring:
🔹 SQLi bypassing PDO protection
🔹 RCE via runkit_function_add()
🔹 Root privesc using YAML injection
Check out the full walkthrough here:
https://kaizenl.ink/7e8dgm
SaturdayMP Show 75: Hack the Box - Lock (Part 1, Almost Captured the User Flag)
https://youtu.be/M6CMolFPnGs
In this episode I attempt the Lock machine on Hack the Box . Spoiler: I almost captured the user flag but ran out of time. Got delayed by installing items on my new Kali Linux WSL and learning new about MSFvemon, setting Python virtual environments, and the Cryptodome library.
Hopefully, the next video will be capturing the user and root flags. The joys of mostly live videos where you get to watch me struggle and hopefully we learn together.
Hack the Box:
https://www.hackthebox.com/
WSL:
https://learn.microsoft.com/en-us/windows/wsl/
IIS:
https://www.iis.net/
MSFvemon:
https://www.offsec.com/metasploit-unleashed/msfvenom/
Python venv:
https://docs.python.org/3/tutorial/venv.html
Have a question you want answered in a future video? A challenging or interesting problem you need you want to see solved? Constructive feedback? Then comment, DM me, or send an email to ask@saturdaymp.com.
Found this video useful? Then help others find it by liking, subscribing, sharing, and/or sponsoring: https://github.com/sponsors/saturdaymp
Thank you for watching!
Client Info
Server: https://mastodon.social
Version: 2025.07
Repository: https://github.com/cyevgeniy/lmst