· 13 min easy Windows Blue
HTB: Blue
EternalBlue (MS17-010) turns an SMB-only Windows 7 host into a SYSTEM shell in under a minute. The box is a single-exploit machine, but the methodology around blind command execution and exfiltration via writable shares is worth studying.
#htb
#smb
#ms17-010
#eternalblue +1
· 15 min easy Windows Legacy
HTB: Legacy
MS08-067 on Windows XP — the vulnerability that powered the Conficker pandemic. A deep dive into the NetAPI32.dll buffer overflow that defined an era of network worms.
#htb
#smb
#ms08-067
#cve-2008-4250 +3
· 14 min easy Linux Lame
HTB: Lame
A command injection flaw in Samba's username map script configuration gives unauthenticated root on a Linux host — and a lesson in why the obvious exploit isn't always the right one.
#htb
#smb
#samba
#cve-2007-2447 +3