YPYogesh Peelainexploitnotes.hashnode.dev00HackTheBox: Bamboo Writeup3h ago · 7 min read · Summary Bamboo is a HackTheBox machine that chains together a Squid proxy pivot, an authentication bypass in PaperCut NG (CVE-2023-27350), and a PATH hijack privilege escalation to reach root. The expJoin discussion
YPYogesh Peelainexploitnotes.hashnode.dev00Hackthebox: Forgotten Writeup15h ago · 6 min read · Summary Forgotten is a HckTheBox machine centered around an exposed LimeSurvey installer endpoint that was never properly secured post-deployment. By spinning up a rogue MySQL server, an attacker can Join discussion
YPYogesh Peelainexploitnotes.hashnode.dev00HackTheBox: Bruno Writeup1d ago · 16 min read · HTB Bruno - Zip-Slip RCE to Kerberos Relay Domain Admin Bruno is a Windows Active Directory box built around a single bad assumption: that a "malware scanner" service can safely extract whatever zip aJoin discussion
YPYogesh Peelainexploitnotes.hashnode.dev00TryHackMe - NerdHerd writeup4d ago · 7 min read · Platform: TryHackMeDifficulty: EasyOS: Linux Reconnaissance Nmap nmap -sC -sV -p- -A MACHINE_IP -oA nmap Open ports: 21/tcp — vsftpd 3.0.3 (Anonymous FTP allowed) 22/tcp — OpenSSH 7.2p2 (Ubuntu) Join discussion
YPYogesh Peelainexploitnotes.hashnode.dev00HackTheBox - Snapped Writeup4d ago · 9 min read · Difficulty: Medium OS: Linux Tags: nginx-ui CVE-2026-27944 backup-disclosure bcrypt snapd CVE-2026-3888 race-condition suid privilege-escalation Reconnaissance We begin with a standard nmap scan to Join discussion
