m3n0sd0n4ld (David Utón)

Writeups HTB, THM, VulnHub and others...

$ WHOAMI

Tools

  1. uDork: uDork is a script written in Bash Scripting that uses advanced Google search techniques to obtain sensitive information in files or directories, find IoT devices, detect versions of web application…
  2. uNominaCracker: It is a script written in Python that performs brute force on workers’ payroll files through the use of their DNI (National Identity Document).

Exploits

Software CVE Link
WordPress 5.7 - ‘Media Library’ XML External Entity Injection (XXE) (Authenticated) CVE-2021-29447 Link
SUDO CVE-2021-3156 (Checker) Link
Strapi < 3.0.0-beta.17.7 (Authenticated) CVE-2019-19609 Link

Writeups

Name Level OS Tags Writeup
Resolute Medium Windows #smb #evil-winrm #password-spray #crackmapexec View
Monteverde Medium Windows #enum4linux #smb #evil-winrm #powershell #AzureAD View
Sauna Easy Windows #GetNPUsers.py #John #mimikatz #winPEAS View
Conceal Hard Windows #snmp #ike-scan #strongswan #ftp #SeImpersonatePrivilege View
Omni Easy Windows #IoT #SirepRAT.py #WDP View
Mango Medium Linux #NoSQL #script #SUID #jjs #java View
Bastard Medium Windows #Drupal #Drupalgeddon2 #SeImpersonatePrivilege View
Forest Easy Windows #GetNPUsers #John #Evil-winrm #Bloodhound #Powerview #ExchangeWindowsPermission #Secretsdump #psexec View
Doctor Easy Linux #SSTI #RCE #Splunk #SplunkWhisperer2 View
Chaos Medium Linux #WP #Roundcube #crypto #Firefox View
Armageddon Easy Linux #Drupal #Drupalgeddon2 #Snap View
Knife Easy Linux #PHP8 #RCE #SUDO #Knife View
BountyHunter Easy Linux   Private
Explore Easy Android   Private
Previse Easy Linux   Private
Driver Easy Windows   Private
Bolt Medium Linux   Private

Name Level OS Tags Writeup
Relevant Medium Windows #smb #cmdasp View
Startup Easy Linux #wireshark #cron #gobuster View
Internal Hard Linux #WP #Jenkins View
Revenge Medium Linux #sqlmap #sudo #systemctl View
0day Medium Linux #shellshock #overlays View
Ghizer Medium Linux #debug #RCE #Limesurvey #ghidra View
Iron Corp Hard Windows #hydra #dig #SSRF #ACL View
Bookstore Medium Linux #rest #api #python #SUID View
ConvertMyVideo Medium Linux #commandinjection #cracking #cron View
USTOUN Medium Windows #AD #RID #crackmapexec #mssqlclient.py View
GoldenEye Medium Linux #hydra #telnet #pop3 #aspell #commandInjection #overlays View
Lunizz CTF (Patched) Medium Linux #CommandInjection #mysql #bcrypt #python #cipher View
Cat Pictures Easy Linux #phpbb #docker #cron View
Wgel CTF Easy Linux #wget #passwd #SUDO View
Jack-of-All-Trades Easy Linux #crypto #stego #strings View
VulnNet: dotjar Medium Linux #ghostcat #war #tomcat #SUDO #jar View
KoTH Food CTF Easy Linux #mysql #SETUID #screen View
KoTH Hackers Medium Linux #ssh #privatekeys #SUDO #nano View
The Blob Blog Medium Linux #brainfuck #vigenere #steghide #reversing View
Mustacchio Easy Linux #XXE #pathabsolute #tail View
Harder Medium Linux #git #alpine #gpg View
Fusion Corp Hard Windows #kerbrute #ASReproast #LDAP #ACLs #AD View
EnterPrize Hard Linux #typo3 #libcustom.so #norootsquash View
Mnemonic Medium Linux #cracking #python #script View
Undiscovered Medium Linux #riteCMS #RCE #norootsquash View
Couch Easy Linux #CouchDB #docker View
Empline Medium Linux #opencats #XXE #capabilities #ruby View
IDE Easy Linux #Codiad #RCE #services View
Zeno Medium Linux #RestaurantManagerSystem #SQLi #RCE #services #SUDO #reboot View
Minotaur’s Labyrinth Medium Linux #API #SQLi #Time-based #CommandInjection #script View

Name Level OS Tags Writeup
VulnUni Medium Linux #eClass #SQLi #DirtyCow View
Recon:1 Easy Linux #WP #SUDO #gdb View
CK-00 Easy Linux #WP #SUDO #scp View
DevRandom CTF: 1.1 Easy Linux #LFI #RCE #apache #poison #SUDO #dpkg View
Victim: 1 Medium Linux #Bolt #WebFS #wpa #wifi #SUID #nohup View
Zion: 1 Medium Linux #SSH #SUDO #cp View
Death Star: 1 Medium Linux #UDP #steghide #knockport #lib.so.6 View
Tre: 1 Medium Linux #adminer #mantisBT #SUDO #shutdown View
Seppuku: 1 Hard Linux #webconsole #smb #SUDO #ln View
CengBox: 2 Medium Linux #GilaCMS #SUDO #scripts View
HA: Natraj Medium Linux #LFI #SSH #RCE #poison #SUDO #nmap View
Glasgow Smile: 1.1 Medium Linux #joomla #cron View
GitRoot: 1 Medium Linux #git #SUDO View
eLection: 1 Medium Linux #eLection #OSINT #SQLi # View
Sunset: decoy Easy Linux #zip #john #chkrootkit View
CyberSploit: 1 Easy Linux #crypto #overlays View
Pwned: 1 Easy Linux #SSH #group #docker View
BlackRose: 1 Hard Linux #byPass #PHP #strcmp #id.so #reversing #ghidra #waf View
GreenOptic: 1 Hard Linux #LFI #wireshark #group View
Presidential: 1 Hard Linux #LFI #RCE #phpmyadmin #capabilities #tar View
Tomato: 1 Medium Linux #LFI #poison #RCE #ssh #log #CVE-2017-16995 View
Sunset: Midninght Medium Linux #WP #SUID #status #path #service View
Sunset: Twilight Medium Linux #PHPF1 #shadow #file View
Chili: 1 Easy Linux #FTP #write #abuse #passwd View
Cewlkid: 1 Medium Linux #SitemagicCMS #fileupload #cron #SUDO View
Durian: 1 Hard Linux #LFI #RCE #log #poison #capabilities #gdb View
Relevant: 1 Medium Linux #WP #nmap #scripts #plugins #wp-file-manager #RCE #SUDO #node View
Powergrid: 1.0.1 Hard Linux #Roundcube #RCE #PGP #Rsync #pivoting #SSH View
Insanity: 1 Hard Linux #wireshark #SQLi #SquirrelMail #Firefox View
Tempus Fugit: 3 Hard Linux #SSTI #SQLite #Processwire #OPT #Google #reversing #abuse #binary View
KB-Vulns: 3 Easy Linux #smb #SiteMagicCMS #SETUID #systemctl View
Cybox: 1 Medium Linux #LFI #RCE #Apache #poison #SETUID #uncommon View

Name Level OS Tags Writeup
DC5 Easy Linux #LFI #RCE #Nginx #log #poison #SETUID #screen View

Name Level OS Tags Writeup
El coche fantástico Easy Linux #web #waf #xor #RCE View

Articles


Events & Conferences


About

David Utón is Penetration Tester and security auditor for web and mobiles applications, perimeter networks, internal and industrial corporate infrastructures, and wireless networks.

Contacted on:

David-Uton @David_Uton