Operational Ledger

All Target Writeups

Facts Icon
Camaleon CVEs Easy
HTB: Facts
Mass Assignment CVE → MinIO S3 credential theft → Sudo Facter privilege escalation. Full attack chain on a Camaleon CMS instance.
OS // LINUXCLICK TO EXPAND ↓
RCE / Pivot Medium
HTB: DevHub
MCPJam Inspector RCE → SSH tunneling to internal Jupyter → debug API extraction of root SSH keys.
OS // LINUXCLICK TO EXPAND ↓
Reactor Icon
Weaponization Log Hard
HTB: Reactor
React2Shell RCE (CVE-2025-55182) → SQLite credential reuse → Node.js debugger exploitation for root.
OS // LINUXCLICK TO EXPAND ↓
Machine Easy
HTB: Active
GPP password recovery → Kerberoasting the Administrator account → full domain takeover via SMB service execution.
OS // WINDOWSCLICK TO EXPAND ↓
Challenge Hard
CryptoForge Matrix
Breaking weak IV reuse models across microservice validation endpoints via CBC bit-flip forgery.
CAT // CRYPTOCLICK TO EXPAND ↓
Machine Insane
ActiveDirectory SyncNode
Abusing local certificate allocation authorities to achieve forest-wide domain takeover via ADCS ESC8.
OS // WINDOWSCLICK TO EXPAND ↓