· 24 min insane Linux Jail
HTB: Jail
A stack buffer overflow with socket-reuse shellcode, NFS SUID escalation via raw syscall assembly, an rvim Python escape, and PwnKit combine for a four-stage privilege escalation on CentOS 7.
#htb
#linux
#nfs
#buffer-overflow +2
· 20 min hard Linux Calamity
HTB: Calamity
A 32-bit Linux box with hardcoded credentials, a PHP code injection endpoint, audio steganography for SSH credentials, and an LXD group membership that provides a container escape to root.
#htb
#linux
#buffer-overflow
#audio-steganography +1
· 18 min medium Linux October
HTB: October
Default credentials on October CMS grant admin access, the code editor provides RCE as www-data, and a 32-bit SUID buffer overflow with ASLR brute-force delivers root in under ten seconds.
#htb
#linux
#october-cms
#file-upload +2
· 15 min easy Windows Legacy
HTB: Legacy
MS08-067 on Windows XP — the vulnerability that powered the Conficker pandemic. A deep dive into the NetAPI32.dll buffer overflow that defined an era of network worms.
#htb
#smb
#ms08-067
#cve-2008-4250 +3