[HackTheBox] Optimum

Siddharth Johri

Oct 9, 2021

This is a really nice box.

Even before the recon results came back I took a look at the webserver and a single searchsploit gave me foothold.

Foothold:

dope.

Privilege Escalation:

Systeminfo seemed suspicios so I put it through windows-exploit-suggester

There were these and many more.

Since I didn't find anything from manual enumeration I started off with these.

The first one did not work for me, but the second one gave an ezpz path to root.

Window-Exploit-Suggester is a superpower for sure.

Sign up to discover human stories that deepen your understanding of the world.

Free

Distraction-free reading. No ads.

Organize your knowledge with lists and highlights.

Tell your story. Find your audience.

Membership

Read member-only stories

Support writers you read most

Earn money for your writing

Listen to audio narrations

Read offline with the Medium app

Written by Siddharth Johri

To hack the world, first you need to make coffee

No responses yet

Write a response

What are your thoughts?

Also publish to my profile

Recommended from Medium

Master C&C from Userland to Kernel Mode onWindows (Part 1: DNS Tunneling)

In

OSINT Team

by

Abdellaoui Ahmed

Master C&C from Userland to Kernel Mode onWindows (Part 1: DNS Tunneling)

Hello everyone! After completing my first Red Teaming series, where I covered how to use social engineering to gain initial access, bypass…

Nov 10, 2024

PWN Sick ROP challenge — HTB

Karol Mazurek

PWN Sick ROP challenge — HTB

SROP with mprotect() NX bypass [x64]

3d ago

Lists

Staff picks

826 stories1649 saves

Stories to Help You Level-Up at Work

19 stories948 saves

Self-Improvement 101

20 stories3355 saves

Productivity 101

20 stories2818 saves

DNS — Port 53 — Pentesting

Very Lazy Tech 👾

DNS — Port 53 — Pentesting

Basic info

Oct 3, 2024

Red Teaming 101: Using LNK Files for Initial Access. (Part 1)

In

OSINT Team

by

Abdellaoui Ahmed

Red Teaming 101: Using LNK Files for Initial Access. (Part 1)

Cybersecurity is a constantly evolving field, where red teamers are always looking for new ways to stay ahead of defenders. Gaining initial…

Oct 4, 2024

Cicada (HTB) write-up

Highv

Cicada (HTB) write-up

Enumeration

Oct 25, 2024

Skills Assessment - HTB Pivoting, Tunneling, and Port Forwarding

Ibrahima Ndong

Skills Assessment - HTB Pivoting, Tunneling, and Port Forwarding

I really had more fun that I can admit doing this assessment, I really enjoyed it and it just had the right amount of difficulty to…

Dec 13, 2024

See more recommendations

Help
Status
About
Careers
Press
Blog
Privacy
Terms
Text to speech
Teams