file permissions — NepCodeX

Writeup – Eighty – HackMyVM – Walkthrough

By Krishna UpadhyayPosted on January 15, 2023January 15, 2023Posted in SecurityTagged file permissions, hackmyvm, nginx misconfiguration, path traversal, security, sudo abuse, walkthrough, writeupNo Comments

Eighty is a difficult machine from sML on the platform HackMyVM. This machine uses various techniques like knocking the ports out, analyzing the webserver and exploiting superuser permission. However, you can also say that the machine is relatively easy since everything is ahead of you. Furthermore, an experienced hacker can easily lay out the route […]

Catland walkthrough from HackMyVM – Writeup

By Krishna UpadhyayPosted on January 14, 2023January 14, 2023Posted in SecurityTagged catland, file permissions, hackmyvm, LFI, local file inclusion, security, sudo abuse, walkthrough, writeupNo Comments

HackMyVM has added a new medium-difficulty machine “Catland” by cromiphi. This machine features subdomain enumeration, local file inclusion, insecure file permissions and sudo abuse. However, for the domain name, you need to take the help of the VM box. “Catland walkthrough from HackMyVM – Writeup” Click here to go to the download page of Catland […]

Opacity Walkthrough from HackMyVM – Writeup

By Krishna UpadhyayPosted on December 22, 2022December 22, 2022Posted in SecurityTagged bruteforce, cronjob, file permissions, hackmyvm, insecure file upload, keepass2, opacity, remote command execution, security, walkthrough, writeup2 Comments

Opacity is a new machine from the platform HackMyVM. The author of the VM is mindsflee. The VM includes vulnerabilities like insecure file upload, remote command execution, insecure file permissions, exploiting cronjobs, etc. In this post, I will describe all the steps starting from identifying the IP address of the target to finding the root […]

Lupinone Writeup – HackMyVM – Walkthrough

By Krishna UpadhyayPosted on October 8, 2021October 8, 2021Posted in SecurityTagged bruteforce, file permissions, hackmyvm, lupinone, security, sudo abuse, walkthrough, writeup2 Comments

Lupinone is an easy machine from HackMyVM by icex64. A bit of logic and experience helps to get the foothold. Once we get the foothold, it is a piece of cake. Firstly, I would like to congratulate icex64 for his first submission to the HackMyVM platform. About the machine, it works quite well on VirtualBox.

Tranquil Writeup – HackMyVM – Walkthrough

By Krishna UpadhyayPosted on October 5, 2021October 5, 2021Posted in SecurityTagged file permissions, hackmyvm, hexahue, security, steganography, tranquil, walkthrough, writeupNo Comments

Tranquil is a moderately difficult machine from HackMyVM by SML. The best part of this machine is to get the foothold. After this, there is a file where we can write and it gives us the root shell. Lastly, this machine works well on VirtualBox.

Hundred – Writeup – HackMyVM – Walkthrough

By Krishna UpadhyayPosted on September 18, 2021January 23, 2022Posted in SecurityTagged bruteforce, file permissions, hackmyvm, hundred, security, steganography, walkthrough, writeup6 Comments

Hundred is an easy machine from HackMyVM. The author of the machine is SML and he created it to celebrate 100 machines on the platform. The machine is pretty easy but requires a few special techniques to get to the root.

EvilBox Writeup – Vulnhub – Walkthrough

By Krishna UpadhyayPosted on August 27, 2021August 27, 2021Posted in SecurityTagged cracking, evilbox, file permissions, LFI, security, vulnhub, walkthrough, writeup2 Comments

EvilBox is a Vulnhub machine rated as easy by the author Mowree. I have tried this machine on VirtualBox and it works fine on the default setting. However, you might want to change the network type to NAT Network if you are using one. Furthermore, this machine is a new machine at the time of […]

AdBlock Detected