Tag

hash

Linux Privilege Escalation – Writable passwd file

Introduction

The /etc/passwd file is used in Linux operating systems to store user information such as user hashes, groups, home directory and more.

If improper file permissions are used for this file, this could allow attackers to escalate privileges to root.

January 21, 2021 | by Stefano Lanaro | Leave a comment

CTF Walkthroughs, Hack The Box

Hack The Box – Arctic Walkthrough

Introduction

This was an easy Windows machine that involved exploiting a directory traversal vulnerability in the Adobe ColdFusion web application to obtain user hashes, cracking them with an online hash lookup tool and using a scheduled task to gain remote access. Privilege escalation was possible through a Windows Kernel Exploit.

January 18, 2021 | by Stefano Lanaro | Leave a comment

Navigation
- Home
- CTF Walkthroughs
- Guides
- Reviews
- Resources
  - Cheat Sheets
  - Checklists
- About
About StefLan Security

I am a penetration tester and cyber security / Linux enthusiast.
Through this blog, I would like to share my passion for penetration testing, hoping that this might be of help for other students and professionals out there. I will be more than glad to exchange ideas with other fellow pentesters and enthusiasts.
Recent Posts
- Certified Red Team Expert (CRTE) Review April 16, 2024
- TryHackMe – Nax Walkthrough April 8, 2024
- Certified Azure Red Team Professional (CARTP) Review December 23, 2023
- A Complete Guide to Hacking GraphQL September 17, 2023
- Offensive Security Experienced Penetration Tester (OSEP) Review January 24, 2023