HackTheBox - Valentine
This challenge sees a user shell obtained by exfiltrating sensitive information via a vulnerability called Heartbleed in the OpenSSL cryptography library; which is a widely used implementation of the Transport Layer Security (TLS) protocol.
HackTheBox - Aragog
Aragog was a delightful challenge on HackTheBox. It’s up there with one of my favourites so far!
HackTheBox - Nibbles
Image upload forms on websites are just for pictures of your cats, right?
HackTheBox - Chatterbox
Patching your operating system isn’t enough. You need to patch your third-party applications too as they can contain vulnerabilities such as buffer overflows that allow a system to be exploited.
HackTheBox - Jeeves
Jeeves demonstrates the seriousness of securing access to applications, and the importance of practising good password hygiene.
Good password hygiene
So what makes a good password? Historically, we’ve always been told that a good password, is a complex password. This is simply not true.