Pentesters

Which is more valuable to you; the ability to identify a problem, or the ability to solve the problem? There…

NodeZero compromised HTB’s Mirai machine by using default SSH creds for user pi, then escalated to root via unrestricted sudo…

The Jerry machine from the Hack The Box platform nicely illustrates the danger of weak and default credentials.

NodeZero compromises the "Active" machine on Hack The Box by chaining classic Active Directory vulnerabilities: GPP password exposure, Kerberoasting, and…

The engineering team has been working tirelessly to improve the "what to wow" user experience, add more attack content, add…

NodeZero exploited EternalBlue on HTB’s Blue machine to gain system access and dump credentials, showing the risk of unpatched SMB…