Traceback (Easy) Box Initial Foothold Traceback is a retired easy machine that focuses on a backdoor left behind by a previous threat actor. Exploiting the misconfigured update-motd.d directory and the writeable .ssh directory can lead to privilege escalation as root. A comprehensive NMAP scan of …

Cap (Easy) Box Cap is a retired easy box from HackTheBox. It provides a light introduction into IDOR and Linux capability exploitation. Initial Foothold Let’s start off with enumerating the ports. We can use nmap for this task. nmap <TARGET-IP> This gives us three open ports for numbers …

Shocker (Easy) Box The Shocker box is an easy machine on HTB. It explores web enumeration and the ShellShock exploit. Initial Foothold Let’s do an NMAP scan of the server: nmap <TARGET-IP> Port 80 and Port 2222 seem to be open. A service scan on both port shows us that port 2222 is …