Trickster: use CVE-2023-47268 and CVE-2024-32651 where it fits the service, gain a shell, and escalate to root.
machinemachine
Writeups
380 postsmachinemachine
Sea
Sea: use CVE-2023-41425 where it fits the service, gain a shell, and escalate to root.
machinemachine
Caption
Caption: enumerate the services, turn the exposed weakness into a shell, and escalate to root.
machinemachine
Bastion
Bastion: enumerate the AD surface, abuse the exposed credential or delegation path, and escalate to Administrator.
machinemachine
Curling
Curling: abuse the Joomla exposure for a shell, then use local enumeration to reach root.
machinemachine
Sightless
Sightless: use CVE-2022-0944 and CVE-2024-34070 where it fits the service, gain a shell, and escalate to root.
machinemachine
Spooktrol
Spooktrol: turn the exposed service into a shell, pivot through the container boundary, and escalate to root.
machinemachine
Writeup
Writeup: use CVE-2022-41544 where it fits the service, gain a shell, and escalate to root.
machinemachine
Active
Active: enumerate the AD surface, abuse the exposed credential or delegation path, and escalate to Administrator.
machinemachine
Codify
Codify: enumerate the AD surface, abuse the exposed credential or delegation path, and escalate to Administrator.
machinemachine
Paper
Paper: use CVE-2019-17671 and CVE-2021-3560 where it fits the service, gain a shell, and escalate to root.
machinemachine
Perfection
Perfection: enumerate the services, turn the exposed weakness into a shell, and escalate to root.
web
SQHell
SQHell: exploit the SQL injection, extract the needed data, and reach the flag.
pwn
DearQA
DearQA: shape the heap state, gain the needed write or leak, and pivot to flag access.
machinemachine
Blog
Blog: abuse the WordPress foothold, stabilize the shell, and escalate through the local weakness.
machinemachine
DevVortex
DevVortex: use CVE-2023-23752 where it fits the service, gain a shell, and escalate to root.