Skip to content

Offensive Security Writeups (NO LONGER MAINTAINED)

Hack The Box is an online platform allowing you to test your penetration testing skills and exchange ideas and methodologies with thousands of people in the security field.

Below you will find my personal writeups of the various boxes that can be found on hackthebox.eu, ranked by difficulty.

Hack The Box - Easy Boxes

Template Page

  1. βœ… - Lame
  2. βœ… - Legacy
  3. βœ… - Devel
  4. βœ… - Beep
  5. βœ… - Optimum
  6. βœ… - Arctic
  7. βœ… - Grandpa
  8. βœ… - Granny
  9. βœ… - Bank
  10. βœ… - Blocky
  11. βœ… - Blue
  12. βœ… - Mirai
  13. βœ… - Shocker
  14. βœ… - Sense
  15. βœ… - Bashed
  16. βœ… - Nibbles
  17. βœ… - Valentine
  18. βœ… - Sunday
  19. βœ… - Bounty
  20. βœ… - Jerry
  21. βœ… - Active
  22. βœ… - Access
  23. βœ… - Frolic
  24. βœ… - Curling
  25. βœ… - Irked
  26. βœ… - Teacher
  27. βœ… - Help
  28. βœ… - FriendZone
  29. βœ… - Netmon
  30. βœ… - CasaDePapel
  31. βœ… - Bastion
  32. βœ… - SwagShop
  33. βœ… - Writeup
  34. βœ… - Haystack
  35. βœ… - Safe
  36. βœ… - Heist
  37. βœ… - Networked
  38. βœ… - Forest
  39. βœ… - Postman
  40. βœ… - Traverxec
  41. βœ… - OpenAdmin
  42. βœ… - Nest
  43. βœ… - Traceback
  44. βœ… - Remote
  45. βœ… - Servmon
  46. βœ… - Admirer
  47. βœ… - Blunder
  48. βœ… - Tabby
  49. βœ… - Buff
  50. βœ… - Omni
  51. βœ… - Doctor
  52. βœ… - Academy
  53. βœ… - Laboratory
  54. βœ… - Luanne
  55. βœ… - Delivery
  56. βœ… - Toolbox
  57. βœ… - Sauna
  58. βœ… - ScriptKiddie
  59. βœ… - Armageddon
  60. βœ… - Spectra
  61. βœ… - Love
  62. βœ… - Cap
  63. βœ… - Knife
  64. βœ… - Previse
  65. βœ… - Paper
  66. βœ… - BountyHunter
  67. βœ… - Explore
  68. βœ… - Horizontall
  69. βœ… - Backdoor
  70. βœ… - Driver

Hack The Box - Medium Boxes

Template Page

  1. βœ… - Popcorn
  2. βœ… - Bastard
  3. βœ… - Tenten
  4. βœ… - Cronos
  5. βœ… - October
  6. βœ… - Lazy
  7. βœ… - Sneaky
  8. βœ… - Haircut
  9. βœ… - Europa
  10. βœ… - Nineveh
  11. βœ… - Apocalyst
  12. βœ… - SolidState
  13. βœ… - Node
  14. βœ… - Enterprise
  15. βœ… - Jeeves
  16. βœ… - Inception
  17. βœ… - FluxCapacitor
  18. βœ… - Chatterbox
  19. βœ… - Aragog
  20. βœ… - Bart
  21. βœ… - Stratosphere
  22. βœ… - Celestial
  23. βœ… - Silo
  24. βœ… - Poison
  25. βœ… - Canape
  26. βœ… - Olympus
  27. βœ… - TartarSauce
  28. βœ… - DevOops
  29. βœ… - Hawk
  30. βœ… - Waldo
  31. βœ… - SecNotes
  32. βœ… - Giddy
  33. βœ… - Ypuffy
  34. βœ… - Carrier
  35. βœ… - Vault
  36. βœ… - Redcross
  37. βœ… - Lightweight
  38. βœ… - Chaos
  39. βœ… - Querier
  40. βœ… - Arkham
  41. βœ… - Unattended
  42. βœ… - Luke
  43. βœ… - Jarvis
  44. βœ… - Craft
  45. βœ… - Bitlab
  46. βœ… - Wall
  47. βœ… - Json
  48. βœ… - AI
  49. βœ… - Sniper
  50. βœ… - Mango
  51. βœ… - Obscurity
  52. βœ… - Monteverde
  53. βœ… - Book
  54. βœ… - Cascade
  55. βœ… - Magic
  56. βœ… - Cache
  57. βœ… - Fuse
  58. βœ… - SneakyMailer
  59. βœ… - OpenKeyS
  60. βœ… - Worker
  61. βœ… - Passage
  62. βœ… - Jewel
  63. βœ… - Bucket
  64. βœ… - Time
  65. βœ… - Ready
  66. βœ… - Tenet
  67. βœ… - Ophiuchi

Hack The Box - Hard Boxes

Template Page

  1. βœ… - Joker
  2. βœ… - Calamity
  3. βœ… - Charon
  4. βœ… - Shrek
  5. βœ… - Mantis
  6. βœ… - Kotarak
  7. βœ… - Tally
  8. βœ… - CrimeStoppers
  9. βœ… - Falafel
  10. βœ… - Dropzone

Recurrent Tricks

Template Page

  1. βœ… - File transfers
  2. βœ… - reverse shells with XC
  3. βœ… - SSH Tunnels
  4. βœ… - Intercepting HTTP and HTTPS requests with Burpsuite

The Concept of Hacking

The Goal is to capture both the User and the Root flags by gaining unauthorized access to the machines on HTB's private network, in order to get the flags, one has to employ various sets of pentesting skills, from finding out common vulnerabilities in the easier boxes, to crafting custom-exploitation for the harder boxes.

Binary Exploitation

gdb, gef, ghidra, pwntools, assembly, C, 32-64bit binaries, reverse engineering, CTF challenges


Nihilist
Donate XMR to Nihilist:
8AUYjhQeG3D5aodJDtqG499N5jXXM71gYKD8LgSsFB9BUV1o7muLv3DXHoydRTK4SZaaUBq4EAUqpZHLrX2VZLH71Jrd9k8