HackTheBox.eu – Reminiscent (Forensics 40 points)
For this question, I use Volatility to solve it. You can try to use Volatility Workbench. For me, it seems like not working properly (or I’m just too noob to…
For this question, I use Volatility to solve it. You can try to use Volatility Workbench. For me, it seems like not working properly (or I’m just too noob to…
Recently I’ve observed a phishing mail as below:https://www.virustotal.com/#/file/cf027dd938f1a268f45f2ea786dc538ab47f35006fb12d0b64e0867bccf789c0/detection – clean The file seems to be clean per VT. Interestingly, on details sections, found 2 URLs under OpenXML Doc Info; section…
Recently I’ve encounter list of IPs that are related to CoinHive. So I want to check for domains that tied to these IPs. We can do that by using dig…
Recently I’ve changed my workstation to new one. Previously I’ve installed bunch of Cygwin packages on my old workstation. So I thought; can I somehow migrate my installed Cygwin packages…
Recently we received an alert from our WAF related to an attack towards our environment. Further review of the alert found that the attacker is using Oracle WebLogic RCE Deserialization…
Challenge 12 : ezfile sharing and the hint for this challenge: Initially, one of our teammate was fuzzing around the website and found “.git” folder. Seems related to the hint.…
The question is: "The critical server seems unreachable. The sysadmin tries to identify the cause of it..but weird..he is doing it backwardly."http://files.wargames.my/2/p100.7zv and the hint given to us: so… RFC…
The file ~/.bash_history holds the history. To clear the bash history completely on the server, open terminal and type:
It is possible to download and install rules manually, but there is a much easier and quicker way to do so. There are special programs which you can use for…
One day, we noticed strange GET request towards our JBoss server: From the request above, you’ll quickly noticed that this attack leveraging Apache Struts vulnerability from CVE-2017-5638. The request tried…