PC (Linux) WriteUp PC is a retired machine focusing on gRPC, SQL injection, and privilege escalation via an RCE vulnerability. We can refer to CVE-2023-0297 for escalation. Initial Foothold We can enumerate open ports using nmap: sudo nmap <IP> -sS -Pn -n --disable-arp -p- I’m using a …

Crafty (Easy) Box Overall a very fun box. Crafty is a retired box that explores a Log4j vulnerability present in a 1.16.16 Minecraft Server. Initial Foothold Reading the description, the box has a pre-auth Log4j vulnerability. But before going into that, we should scan the ports. sudo nmap …

Sneaky (Medium) Box Sneaky is a retired box focusing on IPv6 connections and buffer overflow vulnerabilities. Initial Foothold Enumerating through the box, we see there is an HTTP server available. Let’s fuzz this and see if we can find anything. After fuzzing, we see that there is a /dev page …