Hack The Box — Haircut: Walkthrough (without Metasploit)

11 min readMar 7, 2021

--

Reconnaissance

As usual, start with nmap scanning.

$ nmap -sC -sV -Pn 10.10.10.24 -oN nmap.txt -T4 
Host discovery disabled (-Pn). All addresses will be marked 'up' and scan times will be slower.
Starting Nmap 7.91 ( https://nmap.org ) at 2021-03-06 23:34 HKT
Nmap scan report for 10.10.10.24
Host is up (0.045s latency).
Not shown…

David Tse

Written by David Tse

Cyber Security Enthusiast | OSCP | OSWE

Recommended from Medium

Aleksey
in
Level Up Coding

picoCTF gym writeup: Transformation

In this article, I become a little wiser with Unicode strings. But nonetheless, I still have a long ways to go 😬

5 min readFeb 16

--

S12 - H4CK

Process Code Injection

Introduction

4 min readDec 18, 2022

--

Lists

Staff Picks

332 stories84 saves

Stories to Help You Level-Up at Work

19 stories55 saves

Self-Improvement 101

20 stories107 saves

Productivity 101

20 stories118 saves

Daniyal Ahmed

Hack The Box — Shocker — without Metasploit (TJNull’s list for OSCP)

This is my 6th write-up for Shocker, a machine from TJNull’s list of HackTheBox machines for OSCP Practice. The full list can be found…

4 min readApr 29

--

Farhan Ardiya

Love — HackTheBox Writeup

Reconnaissance

5 min readFeb 19

--

Karthikeyan Nagaraj
in
InfoSec Write-ups

basic file exploit(100 points)— Binary Exploitation writeup | Pico CTF 2022

Basic File Exploit — Binary Exploitation Challenge by PicoCTF 2022 | Approach by Karthikeyan Nagaraj

5 min readDec 29, 2022

--

Farhan Ardiya

Secnotes — HackTheBox Writeup

Reconnaissance

5 min readFeb 12

--

See more recommendations

Help
Status
Writers
Blog
Careers
Privacy
Terms
About
Text to speech