/tags/linux/ Recent content in Linux on v4lle's Blog Hugo en Wed, 04 Feb 2026 00:00:00 +0000 /posts/codeparttwo/ Wed, 04 Feb 2026 00:00:00 +0000 /posts/codeparttwo/ <p><img src="/posts/codeparttwo/codeparttwo.png" alt="codeparttwo"></p> <p>CodePartTwo is an easy difficulty Linux machine featuring a web-based JavaScript editor. The core of this challenge revolves around the &ldquo;Run Code&rdquo; functionality - a feature that is inherently dangerous if not properly isolated.</p> <hr> <h2 id="-enumeration">🕵️ Enumeration</h2> <p>After spawning the machine and connecting to the VPN, we start with the initial enumeration.</p> <hr> <h2 id="-initial-nmap-scan">🔍 Initial Nmap Scan</h2> <p>Like always, we start by running an initial nmap scan to identify open ports:</p> /posts/editor/ Wed, 10 Dec 2025 00:00:00 +0000 /posts/editor/ <p><img src="/posts/editor/editor.png" alt="editor"></p> <p><strong>Editor</strong> is an easy Linux machine running a vulnerable version of XWiki that allows unauthenticated remote code execution, providing an initial foothold. Enumeration of the system reveals a misconfigured SUID binary, which can be exploited to escalate privileges and gain root access.</p> <hr> <h2 id="-enumeration">🕵️ Enumeration</h2> <p>After spawning the machine and connecting to the VPN, we start with the initial enumeration.</p> <hr> <h2 id="-initial-nmap-scan">🔍 Initial Nmap Scan</h2> <p>We begin by running an initial nmap scan with the following command:</p> /posts/cap/ Mon, 27 Oct 2025 00:00:00 +0000 /posts/cap/ <p><img src="/posts/cap/cap.png" alt="cap"></p> <p><strong>Cap</strong> is an easy difficulty Linux machine running an HTTP server that performs administrative functions including performing network captures. Improper controls result in Insecure Direct Object Reference (IDOR) giving access to another user&rsquo;s capture. The capture contains plaintext credentials and can be used to gain foothold. A Linux capability is then leveraged to escalate to root.</p> <hr> <h2 id="-enumeration">🕵️ Enumeration</h2> <p>After spawning the machine and connecting to the VPN, we start with the initial enumeration.</p> /posts/getting-started/ Wed, 13 Aug 2025 00:00:00 +0000 /posts/getting-started/ <p>Getting Started is not really a box on HTB Labs, it is just a knowledge check in the Getting Started module of the Penetration Tester Job Role Path, but I am writing a Writeup about it anyway.</p> <h2 id="-enumeration">🕵️ Enumeration</h2> <p>After spawning the machine and connecting to the VPN, we start with the initial enumeration.</p> <h2 id="-initial-nmap-scan">🔍 Initial Nmap Scan</h2> <p>We begin by running an initial nmap scan with the following command:</p> /posts/nibbles/ Fri, 08 Aug 2025 00:00:00 +0000 /posts/nibbles/ <p><img src="/posts/nibbles/nibbles.png" alt="nibbles"></p> <p><strong>nibbles</strong> is a fairly simple machine, however with the inclusion of a login blacklist, it is a fair bit more challenging to find valid credentials. luckily, a username can be enumerated and guessing the correct password does not take long for most. This is my first box and also my first writeup.</p> <hr> <h2 id="-enumeration">🕵️ Enumeration</h2> <p>After spawning the machine and connecting to the VPN, we start with the initial enumeration.</p>