$ cd /home/xyniath

A Hack The Box Expressway writeup focusing on network and system enumeration, uncovering hidden infrastructure, and privilege escalation through system misconfiguration.

A Hack The Box TombWatcher writeup covering Windows domain enumeration with BloodHound, restoring a tombstoned user, and exploiting the ESC15 Active Directory Certificate Services vulnerability to achieve domain compromise.

A Hack The Box Blunder writeup covering blog post enumeration for password discovery, authentication bypass, file upload exploitation, and abusing a weak sudo rule to gain root.

A Hack The Box Cache writeup covering web enumeration to find a hidden domain hosting a version of OpenEMR vulnerable to SQL injection and RCE to gain access to the machine, and then attacking memcached to gain root.

A Hack The Box OpenAdmin writeup covering web enumeration, OpenNetAdmin exploitation, internal web page abuse to crack credentials, and then use sudo privilege escalation to gain root.