YPuffy: enumerate the AD surface, abuse the exposed credential or delegation path, and escalate to Administrator.
machinemachine
Machine
62 postsmachinemachine
Brains
Brains: use CVE-2024-27198 where it fits the service, gain a shell, and escalate to root.
machinemachine
Help
Help: enumerate the AD surface, abuse the exposed credential or delegation path, and escalate to Administrator.
machinemachine
GoodGames
GoodGames: turn the exposed service into a shell, pivot through the container boundary, and escalate to root.
machinemachine
Valentine
Valentine: use CVE-2014-0160 and CVE-2016-5195 where it fits the service, gain a shell, and escalate to root.
machinemachine
Yummy
Yummy: enumerate the services, turn the exposed weakness into a shell, and escalate to root.
machinemachine
EvilCUPS
EvilCUPS: use CVE-2024-47076 and CVE-2024-47175 where it fits the service, gain a shell, and escalate to root.
machinemachine
Prioritise
Prioritise: enumerate the services, turn the exposed weakness into a shell, and escalate to root.
machinemachine
Pyrat
Pyrat: enumerate the services, turn the exposed weakness into a shell, and escalate to root.
machinemachine
Cicada
Cicada: enumerate the AD surface, abuse the exposed credential or delegation path, and escalate to Administrator.
machinemachine
Gobox
Gobox: enumerate the services, turn the exposed weakness into a shell, and escalate to root.
machinemachine
Bashed
Bashed: enumerate the services, turn the exposed weakness into a shell, and escalate to root.
machinemachine
Shocker
Shocker: use CVE-2014-6271 where it fits the service, gain a shell, and escalate to root.
machinemachine
TwoMillion
TwoMillion: use CVE-2023-0386 where it fits the service, gain a shell, and escalate to root.
machinemachine
Soccer
Soccer: enumerate the AD surface, abuse the exposed credential or delegation path, and escalate to Administrator.
machinemachine
GreenHorn
GreenHorn: use CVE-2023-50564 where it fits the service, gain a shell, and escalate to root.
machinemachine
BoardLight
BoardLight: use CVE-2022-37706 and CVE-2023-30253 where it fits the service, gain a shell, and escalate to root.
machinemachine
Editorial
Editorial: enumerate the services, turn the exposed weakness into a shell, and escalate to root.
machinemachine
PermX
PermX: use CVE-2023-4220 where it fits the service, gain a shell, and escalate to root.
machinemachine
Headless
Headless: enumerate the services, turn the exposed weakness into a shell, and escalate to root.
machinemachine
Trickster
Trickster: use CVE-2023-47268 and CVE-2024-32651 where it fits the service, gain a shell, and escalate to root.
machinemachine
Sea
Sea: use CVE-2023-41425 where it fits the service, gain a shell, and escalate to root.
machinemachine
Caption
Caption: enumerate the services, turn the exposed weakness into a shell, and escalate to root.
machinemachine
Bastion
Bastion: enumerate the AD surface, abuse the exposed credential or delegation path, and escalate to Administrator.
machinemachine
Curling
Curling: abuse the Joomla exposure for a shell, then use local enumeration to reach root.
machinemachine
Sightless
Sightless: use CVE-2022-0944 and CVE-2024-34070 where it fits the service, gain a shell, and escalate to root.
machinemachine
Spooktrol
Spooktrol: turn the exposed service into a shell, pivot through the container boundary, and escalate to root.
machinemachine
Writeup
Writeup: use CVE-2022-41544 where it fits the service, gain a shell, and escalate to root.