{"@attributes":{"version":"2.0"},"channel":{"title":"malloc.me","link":"https:\/\/malloc.me\/","description":"Recent content on malloc.me","generator":"Hugo","language":"en-us","copyright":"\u00a9 Marc","lastBuildDate":"Wed, 11 Dec 2024 23:34:45 +1100","item":[{"title":"Corporate","link":"https:\/\/malloc.me\/posts\/2024\/05\/corporate\/","pubDate":"Mon, 06 May 2024 01:57:45 +1000","guid":"https:\/\/malloc.me\/posts\/2024\/05\/corporate\/","description":"<h2 id=\"tools-used\">Tools Used<\/h2>\n<ul>\n<li>terminal<\/li>\n<li>obsidian<\/li>\n<li>tmux<\/li>\n<li>openvpn<\/li>\n<li>nmap<\/li>\n<li>chromium<\/li>\n<li>python<\/li>\n<li>gobuster<\/li>\n<li>hydra<\/li>\n<\/ul>\n<h2 id=\"initial-enumeration\">Initial Enumeration<\/h2>\n<p>Add <code>corporate<\/code> and <code>corporate.htb<\/code> to the hosts file.<\/p>\n<h3 id=\"port-scan\">Port Scan<\/h3>\n<p><code>nmap -sS -sV -A -O -T4 corporate.htb<\/code><\/p>\n<ul>\n<li>Port 80<\/li>\n<li>openresty\/1.21.4.3\n<ul>\n<li>No obvious CVEs<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<h2 id=\"foothold\">Foothold<\/h2>\n<h3 id=\"attacking-corporatehtb\">Attacking <code>corporate.htb<\/code><\/h3>\n<p>Port 80 serves a website for Corporate, with most of the pages being static HTML, as is typical with HackTheBox challenges.<\/p>\n<h4 id=\"enumerating-directories\">Enumerating Directories<\/h4>\n<p>Running <code>gobuster<\/code> against the <code>corporate.htb<\/code> domain wasn&rsquo;t super interesting, but revealed two folders worth exploring later: <code>\/assets<\/code> and <code>\/vendor<\/code>.<\/p>"},{"title":"Attended","link":"https:\/\/malloc.me\/posts\/2021\/05\/attended\/","pubDate":"Sat, 08 May 2021 16:00:00 +0000","guid":"https:\/\/malloc.me\/posts\/2021\/05\/attended\/","description":"<p><a href=\"https:\/\/hackthebox.eu\/home\/machines\/profile\/307\">Attended<\/a> is an insane-rated machine on HackTheBox created by <a href=\"https:\/\/www.hackthebox.eu\/home\/users\/profile\/8292\">guly<\/a> and <a href=\"https:\/\/www.hackthebox.eu\/home\/users\/profile\/46502\">freshness<\/a>. Owning this machine involves thorough enumeration of services, lesser-common methods of exfiltrating data and knowledge of binary reversing, exploitation with ROP, x86_64 calling conventions, usage of OpenBSD, and knowledge of how RSA keys are structured and formed.<\/p>\n<p>Thanks to <a href=\"https:\/\/www.hackthebox.eu\/home\/users\/profile\/340449\">frostb1te<\/a>, especially for information about RSA keys.<\/p>\n<h2 id=\"initial-enumeration\">Initial Enumeration<\/h2>\n<p>After configuring <code>\/etc\/hosts<\/code> to contain an entry for <code>attended.htb<\/code> and the box IP address, we can start out with a basic nmap scan of our target using <code>nmap -sS -sV -A -T4 10.10.10.221<\/code> which yields the following results about the target machine:<\/p>"},{"title":"About","link":"https:\/\/malloc.me\/about\/","pubDate":"Mon, 01 Jan 0001 00:00:00 +0000","guid":"https:\/\/malloc.me\/about\/","description":"<p>I&rsquo;m Marc, a security engineer. If you&rsquo;d like to reach out, you can email me at <!-- raw HTML omitted --><a href=\"mailto:contact@malloc.me\">contact@malloc.me<\/a><!-- raw HTML omitted -->.<\/p>\n<p>If you&rsquo;re interested in CTF write-ups or other ramblings, check out <a href=\"https:\/\/malloc.me\/posts\">my posts<\/a><!-- raw HTML omitted -->.<\/p>"}]}}