• Home
Skip to content

Simon Baeg

Just another security blog.

  • Home
  • LinkedIn
  • GitHub
  • YouTube

Category: HackTheBox

[HackTheBox] Forest

Enumeration I started off with an Nmap scan on the target. We can observe that the host is Windows Server with Active Directory services running. With this in mind, I ran enum4linux to see if there were any other information I could extract from the host. Exploitation (User) After obtaining the user accounts, I attemptedContinue reading →

March 31, 2020June 18, 2020 0 response active directory, ad, ctf, hackthebox

[HackTheBox] Help

Enumeration I started off with a quick Nmap scan on the target. We can see that there is an Apache Service running on port 80. Port 3000 was slightly more interesting. I began my enumeration by performing a quick directory enumeration on the service running at port 80. Gobuster was able to discover “support” whichContinue reading →

May 22, 2019January 11, 2020 0 response ctf, hackthebox

[HackTheBox] Netmon

Enumeration I started off with an Nmap scan on the target machine I noticed that ftp (port 21) was open so I navigated to my browser to see if it allowed me to get unauthenticated access. The unauthenticated access allowed me to see the contents of the machine. The level of access on this serviceContinue reading →

May 21, 2019January 17, 2020 0 response ctf, hackthebox

[HackTheBox] Olympus

Enumeration I started off with a simple NMAP scan on the target. A quick glance at the the open ports show nothing too unusual, except maybe the ssh port open on 2222. I navigated to the http service and all it contained was a simple image. I also decided to run a nikto scan toContinue reading →

May 13, 2018January 16, 2020 0 response ctf, hackthebox

[HackTheBox] Chatterbox

Enumeration I started off the box with an nmap scan on the target machine. As you can see from the nmap scan results, we didn’t see anything in the first 1000 ports. On HackTheBox this usually means that there are services running on uncommon ports (I’ve seen SSH at port 65535 before) so I decidedContinue reading →

March 24, 2018January 8, 2020 0 response ctf, hackthebox

[HackTheBox] Bashed

I began the box by first opening the IP address on a web browser to see if anything was there. I noticed it was a blog-style website and there was a single post with the title: phpbash. I checked out the GitHub page and noticed that there was two files of interest in the mainContinue reading →

March 23, 2018January 8, 2020 0 response ctf, hackthebox

Introduction

I am a Korean security analyst. This blog will be used by me to upload tutorials and CTF walkthroughs.

OSCP, eCPPTv2, eJPT

Recent Posts

  • [HackTheBox] Forest
  • [HackTheBox] Help
  • [HackTheBox] Netmon
  • [HackTheBox] Olympus
  • [HackTheBox] Chatterbox

Categories

  • Certifications
  • CTF
  • HackTheBox
  • Review

Tags

active directory ad certifications ctf elearnsecurity hackthebox
Copyright © 2021 Simon Baeg
Dulcet theme by FRT