Scanning Network I began by performing an Nmap scan, which revealed open ports 22 and 80, corresponding to SSH and Apache httpd. Here are the results from the Nmap scan: nmap -sC -sV -p- -T4 -vv ...

Scanning Network I began by performing an Nmap scan, which revealed open ports 22, 80, and 54321, corresponding to SSH, nginx, and MinIO object storage. Here are the results from the Nmap scan: n...

Scanning Network I began by performing an Nmap scan, which revealed open ports 22 and 80, corresponding to SSH and Apache httpd. Here are the results from the Nmap scan: nmap -sS -sC -sV -p- -T4 ...

TL;DR This writeup is based on the Payday machine. I began with an Nmap scan revealing a legacy Linux system running CS-Cart (80) and outdated Samba (139/445). Enumeration of the web application u...

TL;DR This writeup is based on the Pelican machine. I started with an Nmap scan that revealed an Exhibitor web interface running on port 8081. Enumeration of the dashboard revealed a vulnerable ve...

TL;DR This writeup is based on the WallpaperHub machine. I began with an Nmap scan revealing SSH (22), HTTP (80), and a Flask application (5000). Enumeration of the web app uncovered a file upload...

TL;DR This writeup is based on the BitForge machine. I began with an Nmap scan revealing SSH (22), HTTP (80), and MySQL (3306). Enumeration of the web server uncovered an exposed .git directory, w...

TL;DR This writeup is based on the Cockpit machine. I began with an Nmap scan revealing SSH (22), HTTP (80), and Cockpit (9090). Enumeration of the web server uncovered a /login.php page. I bypass...

TL;DR This writeup is based on the SpiderSociety machine. I began with an Nmap scan revealing SSH (22), HTTP (80), and FTP (2121). Enumeration of the web server uncovered an internal domain offsec...

TL;DR This writeup is based on the vmdak machine, involving a Linux box hosting a Prison Management System. I began with an Nmap scan which revealed FTP(21), SSH(22), and a web application on port...

TL;DR This writeup is based on the Zab machine involving a Linux box hosting a Mage AI data pipeline. I began with an Nmap scan which revealed SSH(22), HTTP(80), and a web application on port 6789...

TL;DR This writeup is based on the ClamAV machine, involving a legacy Linux box. I began by performing an Nmap scan, which revealed multiple open ports including 22 (SSH), 25 (SMTP), 80 (HTTP), 13...

TL;DR This writeup is based on the Outdated machine, involving a Linux box. I began by performing an Nmap scan, which revealed open ports 22 (SSH), 80 (HTTP) and 10000. While enumerating the HTTP ...

TL;DR This writeup is based on the XposedAPI machine. I began with an Nmap scan revealing SSH (22) and a Remote Software Management API (13337). Enumeration of the web application uncovered an /up...

TL;DR This writeup covers the Code machine, an easy-rated Linux box. The challenge began with a Python code editor running on port 5000, which restricted certain functions. By exploring its limita...