Cyber Weapons – category –
-
![[HackTheBox] What to do if "An error of type HTTPClient::ReceiveTimeoutError happened, message is executed expired" appears in Evil-WinRM](data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==)
[HackTheBox] What to do if "An error of type HTTPClient::ReceiveTimeoutError happened, message is executed expired" appears in Evil-WinRM
I'm using HackTheBox and I was struggling with an Evil-WInRM error, so I'll share it as a memo. Please note that the explanation is spoilers. If an error occurs with Evil-WinRM When trying to use Evil-WinRM, you will be asked to "An error of ty... -
I tried deciphering the encrypted passwords (Type 5, Type 7) set on my Cisco device! HackTheBox Heist Writeup
This time, we will try cracking the encryption password set on the Cisco device and breaking into the server. "HackTheBox-Heist: https://www.hackthebox.com/machines/heist" Please note that the explanation is a spoiler. Preparation First, start the target machine... -
[CVE-2015-3306] I enumerated the shared Samba, manipulate a vulnerable version of proftpd, and escalated privileges by manipulating path variables! TryHackMe Kenobi Writeup
This time, we will enumerate shared Samba, manipulate vulnerable versions of proftpd, and escalate privileges by manipulating path variables. "TryHackMe-Kenobi: https://tryhackme.com/room/kenobi" Please note that the explanation is a spoiler. Preparation First, start with "Start Machine... -
[Permanent CTF for beginners] setodaNote CTF WEB Writeup! Recommended for getting a sense of CTF!
This time, I'll try out the setodaNote CTF web. "setodaNote CTF: https://ctfexh.setodanote.net/About" The setodaNote CTF is a permanent CTF that was held in 2021, and in terms of difficulty, it is equivalent to an introductory level. Now, CTF... -
[TryHackMe] We conducted packet analysis using wireshark to investigate the intrusion of ssh-backdoor! Overpass2 Writeup
This time, we will use wireshark to analyze packets and analyze ssh-backdoor intrusions. Please note that the explanation is a spoiler for "TryHackMe-Overpass2-Hacked: https://tryhackme.com/room/overpass2hacked". Preparation First, "Download Task... -
[CVE-2018-16763] fuel CMS 1.4.1 - I converted Remote Code Execution (1) to python 3 and hacked it! TryHackMe Ignite Writeup
This time, we will try to hack fuel CMS using the vulnerability in CVE-2018-16763. The target machine uses TryHackMe's Ignite. "TryHackMe-Ignite: https://tryhackme.com/room/ignite" Please note that the explanation is a spoiler. advance... -
[TryHackMe] I used SSH2John to extract the hash from the private key and hacked the password with John the Ripper! Overpass Writeup
This time, we will use SSH2John to extract the hash from the private key using TryHackMe's Overpass, and then identify the password using John the Ripper. Overpass is even escalated to privileges, so I hope you can do it until the end! "TryHackMe-Overpass: https://t... -
[TryHackMe] I tried infiltrating a Windows machine with a ret2esp attack (Buffer Overflow)! Brainstorm Writeup
This time, we will try out the "ret2esp attack," one of the buffer overflow attacks. Please note that the explanation is a spoiler for "TryHackMe-Brainstorm: https://tryhackme.com/room/brainstorm". Deploy Machine and Scan Network (machine distribution... -
[CVE-2019-9053] I tried hacking it using the SQL injection vulnerability in CMS Made Simple! (Python3) TryHackMe Simple CTF Writeup
This time, we will take advantage of the CVE-2019-9053: CMS Made Simple's SQL injection vulnerability to infiltrate the target machine and even escalate privileges. The target machine uses "TryHackMe-Simple CTF: https://tryhackme.com/room/easyctf". The explanation is about the topic... -
[TryHackMe] I tried command injection using Python's Eval() function! Devie Writeup
This time, I tried command injection using Python's Eval() function. It also includes command injection as a Writeup for the Room called Devie from TryHackMe, so please take a look. "TryHackMe-: https://tryhackme.com/room/devie...
![[HackTheBox] What to do if "An error of type HTTPClient::ReceiveTimeoutError happened, message is executed expired" appears in Evil-WinRM](https://hack-lab-256.com/wp-content/uploads/2023/09/hack-lab-256-samnail-4-1024x576.jpg)
![[CVE-2015-3306] I enumerated the shared Samba, manipulate a vulnerable version of proftpd, and escalated privileges by manipulating path variables! TryHackMe Kenobi Writeup](https://hack-lab-256.com/wp-content/uploads/2023/08/hack-lab-256-samnail-2-1024x576.jpg)
![[Permanent CTF for beginners] setodaNote CTF WEB Writeup! Recommended for getting a sense of CTF!](https://hack-lab-256.com/wp-content/uploads/2023/08/hack-lab-256-samnail-1-1-1024x576.jpg)
![[TryHackMe] We conducted packet analysis using wireshark to investigate the intrusion of ssh-backdoor! Overpass2 Writeup](https://hack-lab-256.com/wp-content/uploads/2023/08/hack-lab-256-samnail-1024x576.jpg)
![[CVE-2018-16763] fuel CMS 1.4.1 - I converted Remote Code Execution (1) to python 3 and hacked it! TryHackMe Ignite Writeup](https://hack-lab-256.com/wp-content/uploads/2023/08/hack-lab-256-samnail-25-1024x576.jpg)
![[TryHackMe] I used SSH2John to extract the hash from the private key and hacked the password with John the Ripper! Overpass Writeup](https://hack-lab-256.com/wp-content/uploads/2023/07/hack-lab-256-samnail-24-1024x576.jpg)
![[TryHackMe] I tried infiltrating a Windows machine with a ret2esp attack (Buffer Overflow)! Brainstorm Writeup](https://hack-lab-256.com/wp-content/uploads/2023/06/hack-lab-256-samnail-23-1024x576.jpg)
![[CVE-2019-9053] I tried hacking it using the SQL injection vulnerability in CMS Made Simple! (Python3) TryHackMe Simple CTF Writeup](https://hack-lab-256.com/wp-content/uploads/2023/05/hack-lab-256-samnail-22-1024x576.jpg)
