Blue (Easy) Box Blue is an easy machine on HTB. It covers the MS17_010 exploit, also known as the EternalBlue exploit. Initial Foothold & Escalation According to the description, this machine is vulnerable to the EternalBlue exploit. We need to make sure that at least the SMB port 445 is open. …

Antique Write-Up Antique is a retired machine highlighting a known vulnerability with HP JetDirect and SNMP. Initial Foothold The description gives us a crucial service to work with and some hints on potential weaknesses. First, let’s do a quick nmap scan. My favorite is: sudo nmap <IP> …

PC (Linux) WriteUp PC is a retired machine focusing on gRPC, SQL injection, and privilege escalation via an RCE vulnerability. We can refer to CVE-2023-0297 for escalation. Initial Foothold We can enumerate open ports using nmap: sudo nmap <IP> -sS -Pn -n --disable-arp -p- I’m using a …