https://arbaazjamadar.com/htb/Recent content in HTB: HackTheBox Season 10 on Security Writeups | HackTheBox | Wiz CTF | AWS Cloud Security | CVE Analysis | Arbaaz Jamadar Hugo -- gohugo.io enreachout@arbaazjamadar.com (Arbaaz Jamadar) reachout@arbaazjamadar.com (Arbaaz Jamadar)©2025 arbaazjamadar.comSun, 19 Apr 2026 00:00:00 +0000 https://arbaazjamadar.com/htb/hackthebox-logging/ Sun, 19 Apr 2026 00:00:00 +0000 reachout@arbaazjamadar.com (Arbaaz Jamadar) https://arbaazjamadar.com/htb/hackthebox-logging/ Unauthenticated Enumeration, generate ticket using the found creds. Abuse shadow credential to reset msa_health and get initial foothold. Lateral movement through dll injection and privilege escalation via AD CS (ESC1) and WSUS abuse.SecuritySecurity WriteupCloud SecurityHTB writeupHTB Logging writeupLogging Writeupsecurity writeupHTBLoggingWindowsActive Directorydll hijackingUpdateMonitorservice abuseprivilege escalationtgtMisconfigurationsflowaipassword resetLateral PivotingHTBHackTheBoxHackTheBox: LoggingHTB: LoggingInformation GatheringInitial EnumerationADIDNSPrivilege EscalationWSUSPrivilege AbuseADCS ESC1ADCSWSUS AbuseBox WriteupsCloud SecurityNetwork SecurityWeb SecurityBrowsed SecurityAPI Security https://arbaazjamadar.com/htb/hackthebox-silentium/ Sat, 11 Apr 2026 00:00:00 +0000 reachout@arbaazjamadar.com (Arbaaz Jamadar) https://arbaazjamadar.com/htb/hackthebox-silentium/ Unauathorized account takeover, leading to RCE in FLOWISEAI, reused passwords, insecure password storage. Arbitrary write using symlinks and PUT operation.SecuritySecurity WriteupCloud SecurityHTB writeupHTB silentium writeupsilentium WriteupMisconfigurationssecurity writeupHTBsilentiumlinuxdockergitsymlinksservice abuseprivilege escalationgogsflowaipassword resetLateral PivotingHTBHackTheBoxHackTheBox: silentiumHTB: silentiumInformation GatheringInitial EnumerationsubdomainPrivilege EscalationnginxPrivilege AbuseCVE-2025-59528CVE-2025-58434CVE-2025-64111Box WriteupsCloud SecurityNetwork SecurityWeb SecurityBrowsed SecurityAPI Security https://arbaazjamadar.com/htb/hackthebox-garfield/ Mon, 06 Apr 2026 00:00:00 +0000 reachout@arbaazjamadar.com (Arbaaz Jamadar) https://arbaazjamadar.com/htb/hackthebox-garfield/ Initial Foothold via batch script, abusing ForceChangePassword privilege to move laterally. Ligolo to pivot to RODC, Domain compromise via RODC Keylist Abuse.SecuritySecurity WriteupCloud SecurityHTB writeupHTB Garfield writeupGarfield WriteupMisconfigurationssecurity writeupHTBGarfieldWindowsActive DirectoryGolden Ticketrbcdrbcd abuserodcForceChangePasswordRODC KeyListKeylist attackLateral PivotingHTBHackTheBoxHackTheBox: GarfieldHTB: GarfieldInformation GatheringInitial EnumerationmsDS-RevealOnDemandGroupPrivilege EscalationBloodyADBloodHoundPrivilege AbuseBox WriteupsCloud SecurityNetwork SecurityWeb SecurityBrowsed SecurityAPI Security https://arbaazjamadar.com/htb/hackthebox-devarea/ Mon, 30 Mar 2026 00:00:00 +0000 reachout@arbaazjamadar.com (Arbaaz Jamadar) https://arbaazjamadar.com/htb/hackthebox-devarea/ Initial foothold by leaking credentials using SSRF from Apache CXF, and using creds to execute RCE on Hoverfly dashboard. Privilege escalation via, exploiting the world writable bash and executing the syswatch script.SecuritySecurity WriteupCloud SecurityHTB writeupHTB devarea writeupdevarea Writeupapache cxfcxfsyswatchworld writable bashhoverflyhoverfly rcessrffile wrappercommand injectionMisconfigurationssecurity writeupHTBdevarealinuxLateral PivotingHTBHackTheBoxHackTheBox: devareaHTB: devareaInformation GatheringInitial EnumerationPrivilege EscalationPrivilege AbuseBox WriteupsCloud SecurityNetwork SecurityWeb SecurityBrowsed SecurityAPI Security https://arbaazjamadar.com/htb/hackthebox-kobold/ Sat, 21 Mar 2026 00:00:00 +0000 reachout@arbaazjamadar.com (Arbaaz Jamadar) https://arbaazjamadar.com/htb/hackthebox-kobold/ Initial Foothold via MCPJam RCE, LFI2RCE via privatebin resulting in compromise of stored credentials.Privilege escalation via Arcane container Orchaestration platform.CTFCTF WriteupCloud SecurityMisconfigurationssecurity writeupHTBkoboldlinuxarcaneprivatebinmcpjamMotionEyeSQLi Data LeakVulnerable BinaryCommand InjectionLateral PivotingHTBHackTheBoxHackTheBox: koboldHTB: koboldInformation GatheringInitial EnumerationreversingPrivilege EscalationCVE-2026-23744CVE-2025-64714CTF WriteupsCloud SecurityNetwork SecurityWeb SecurityBrowsed SecurityAPI Security https://arbaazjamadar.com/htb/hackthebox-variatype/ Sat, 14 Mar 2026 00:00:00 +0000 reachout@arbaazjamadar.com (Arbaaz Jamadar) https://arbaazjamadar.com/htb/hackthebox-variatype/ Initial access via LFI2RCE, lateral movement via cronjob and privilege escalation via vulnerable binaryCTFCTF WriteupCloud SecurityMisconfigurationssecurity CTF writeupHTBvariatypenxclinuxfonttoolscronjobfontforgesetuptoolsCommand InjectionLateral PivotingHTBHackTheBoxHackTheBox: VariaTypeHTB: VariaTypeInformation GatheringInitial EnumerationreversingCTF WriteupsCloud SecurityNetwork SecurityWeb SecurityBrowsed SecurityAPI Security https://arbaazjamadar.com/htb/hackthebox-cctv/ Sat, 07 Mar 2026 00:00:00 +0000 reachout@arbaazjamadar.com (Arbaaz Jamadar) https://arbaazjamadar.com/htb/hackthebox-cctv/ Data Leak via authenticated SQLi leading to initial foothold, Privileges were escalated using RCE via motionEye running as a superuser.CTFCTF WriteupCloud SecurityMisconfigurationssecurity writeupHTBcctvlinuxzoneminderMotionEyeSQLi Data LeakVulnerable BinaryCommand InjectionLateral PivotingHTBHackTheBoxHackTheBox: cctvHTB: cctvInformation GatheringInitial EnumerationreversingPrivilege EscalationCTF WriteupsCloud SecurityNetwork SecurityWeb SecurityBrowsed SecurityAPI Security https://arbaazjamadar.com/htb/hackthebox-pirate/ Mon, 02 Mar 2026 00:00:00 +0000 reachout@arbaazjamadar.com (Arbaaz Jamadar) https://arbaazjamadar.com/htb/hackthebox-pirate/ To do laterCTFCTF WriteupCloud SecurityMisconfigurationssecurity writeupHTBpiratewindowsActive DirectoryAssumed BreachPre2kgMSANTLM relayCoerceDelagationSPN JackingConstrained DelegationLateral PivotingHTBHackTheBoxHackTheBox: pirateHTB: pirateInformation GatheringInitial EnumerationreversingPrivilege EscalationCTF WriteupsCloud SecurityNetwork SecurityWeb SecurityBrowsed SecurityAPI Security https://arbaazjamadar.com/htb/hackthebox-interpreter/ Sun, 22 Feb 2026 00:00:00 +0000 reachout@arbaazjamadar.com (Arbaaz Jamadar) https://arbaazjamadar.com/htb/hackthebox-interpreter/ Initial Foothold via Mirth Connect RCE moving laterally by craacking the user hash from db. Privilege escalation via XXE.CTFCTF WriteupCloud SecurityMisconfigurationssecurity writeupHTBinterpreterlinuxmirth connectMotionEyeSQLi Data LeakVulnerable BinaryCommand InjectionLateral PivotingHTBHackTheBoxHackTheBox: interpreterHTB: interpreterInformation GatheringInitial EnumerationreversingPrivilege EscalationCVE-2023-43208CVE-2023-37679CTF WriteupsCloud SecurityNetwork SecurityWeb SecurityBrowsed SecurityAPI Security https://arbaazjamadar.com/htb/hackthebox-wingdata/ Sun, 15 Feb 2026 00:00:00 +0000 reachout@arbaazjamadar.com (Arbaaz Jamadar) https://arbaazjamadar.com/htb/hackthebox-wingdata/ Initial foothold via unauthenticated RCE on WingData, lateral movement via cracking user password from DB. Privilege Escalation via tarslip, soft link, hard link and filter bypass.CTFCTF WriteupCloud SecurityMisconfigurationssecurity writeupHTBwingdataLinuxtarslipfilter bypassUnauthenticated RCEWingFTPRCELateral PivotingHTBHackTheBoxHackTheBox: wingdataHTB: wingdataInformation GatheringInitial EnumerationreversingPrivilege EscalationCTF WriteupsCloud SecurityNetwork SecurityWeb SecurityBrowsed SecurityAPI Security https://arbaazjamadar.com/htb/hackthebox-pterodactyl/ Sun, 08 Feb 2026 00:00:00 +0000 reachout@arbaazjamadar.com (Arbaaz Jamadar) https://arbaazjamadar.com/htb/hackthebox-pterodactyl/ Problem of future arbaazCTFCTF WriteupCloud SecurityMisconfigurationssecurity writeupHTBPterodactylLinuxPAMPHP PearCMDUnauthenticated RCESuseRCEudisksrace conditionLateral PivotingHTBHackTheBoxHackTheBox: PterodactylHTB: PterodactylInformation GatheringInitial EnumerationreversingPrivilege EscalationCVE-2025-6018CVE-2025-6019CTF WriteupsCloud SecurityNetwork SecurityWeb SecurityBrowsed SecurityAPI Security https://arbaazjamadar.com/htb/hackthebox-facts/ Sun, 01 Feb 2026 00:00:00 +0000 reachout@arbaazjamadar.com (Arbaaz Jamadar) https://arbaazjamadar.com/htb/hackthebox-facts/ Improperly Controlled Modification of Dynamically-Determined Object Attributes allows privilege escalation to admin user leading to exfiltrating SSH keys from S3 Bucket and getting become the Root user by privilege escalation via misconfigured SUIDCTFCTF WriteupCloud SecurityMisconfigurationssecurity writeupHTBfactslinuxcameleon cmsMass AssignmentS3 Data LeakMisconfigured SUIDCommand InjectionLateral PivotingHTBHackTheBoxHackTheBox: factsHTB: factsInformation GatheringInitial EnumerationreversingPrivilege EscalationCTF WriteupsCloud SecurityNetwork SecurityWeb SecurityBrowsed SecurityAPI Security