💻
Portfolio
  • Introduction
  • License
  • Configurations
    • Homelab
    • GitBook to Docusaurus Migration
    • Mobile
    • Digital Books
    • Virtual Machines
  • Privacy and Security
    • Basic Software Investigation
    • Application Sandboxing
    • AppArmor
  • Information Technology
    • Backups
  • OSINT
    • Breach Data
      • Leveraging Breach Data
      • Breach Data Indexing
      • Breach Data Infrastructure
      • Stealer Logs
      • Miniature Breach Index
      • Containerization
    • Transportation
      • United Kingdom Vehicle Registration Search
  • Penetration Testing
    • Wireless
      • Raspberry Pi Portable Hacking Station
      • Wi-Fi
        • Pwnagotchi
        • Aircrack
    • Physical
      • Lockpicking
        • Master Lock 140D
        • Master Lock 1
      • Rubber Ducky
        • Digispark ATtiny85 Rubber Ducky
          • Windows
            • Keylogger
          • MacOS Scripts
            • Warning
            • Wi-Fi Name
            • Website Pop-up
    • Hash Cracking for Dummies
    • Advanced Hash Cracking
  • Write-ups
    • TryHackMe
      • The Marketplace
      • Game Zone
      • VulnNet: Internal
      • RootMe
      • Skynet
      • VulnNet: Roasted
      • Blueprint
      • Anthem
      • Relevant
      • Ice
      • Lian Yu
      • c4ptur3-th3-fl4g
      • CTF collection Vol.1
      • Wgel CTF
      • Anonymous
      • Startup
      • tomghost
      • Overpass 3 - Hosting
      • Agent Sudo
      • Walking An Application
      • Content Discovery
      • Subdomain Enumeration
      • Authentication Bypass
      • Pickle Rick
      • Wonderland
      • Reversing ELF
    • picoCTF
      • PicoCTF 2021
        • Obedient Cat
        • Stonks
        • Wave a flag
        • GET aHEAD
        • Mind your Ps and Qs
        • information
        • Nice netcat...
        • Transformation
        • Python Wrangling
        • Mod 26
      • PicoCTF 2023
        • babygame01
        • chrono
        • findme
        • hideme
        • HideToSee
        • MatchTheRegex
        • money-ware
        • PcapPoisoning
        • Permissions
    • Hack The Box
      • Nunchucks
      • Return
      • Antique
      • Lame
      • Validation
      • Shocker
      • Bashed
      • Nibbles
      • Beep
      • Cronos
      • Sense
      • SolidState
      • Node
      • Valentine
      • Sunday
      • TartarSauce
      • Legacy
      • Blue
      • Devel
      • Nineveh
    • Pwnable.kr
      • [fd]
      • collision
      • bof
      • flag
      • passcode (incomplete)
      • random
    • Microcorruption
      • New Orleans
      • Sydney
      • Hanoi
      • Cusco
    • Kase Scenarios
      • Dark Waters
      • Betrayal
    • Hacktoria
      • Last Flight
      • The Hunt for LOLbins
      • Mediterranean Mafia
    • SEINT_pl OSINT Quiz
      • 2022
      • 2023
  • Other Projects
    • Recipes
      • Beef Birria Tacos
      • IHOP Mango Lemonade Splasher
      • Brownie & Ice Cream
      • Peri Peri Seasoning
      • Chicken Wings
      • Pizza Bagels
Powered by GitBook
On this page
  1. Write-ups
  2. Hack The Box

Legacy

Last updated 2 years ago

This is my write-up for the Hack The Box machine called Legacy located at: .

I ran a basic nmap scan to start off:

The basic nmap scan was backed up by a more deeper scan:

From my understanding, it seems that SMB is open. Running enum4linux -a 10.10.10.4 gets me the following information:

Running a Metasploit module on the IP Address we can see the SMB version:

After searching for a while, I was able to find the user.txt flag:

To change directory into "Documents and Settings", you have to run: cd Documents\ and\ Settings. Note the "\ ".

I was then able to read the root flag as well:

Doing a Google search for "smb Windows XP SP3" got me to . I then ran this exploit and filled in the information for this machine. I was then able to get a meterpreter shell:

this site
https://app.hackthebox.com/machines/Legacy