[HTB] Bounty — Writeup

This was an easy difficulty Windows box. Good learning path for:

  • File Extension Bypass
  • Allowed File Extension Checking (Python Scripting)
  • web.config RCE
  • Nishang (Invoke-PowerShellTcp.ps1) — Reverse Shell
  • Juicy Potato (SeImpersonatePrivilege Abuse)

Initial Recon

--

--

--

OSWE | OSCE | OSCP | CREST | Lead Offensive Security Engineer — All about Penetration Test, Red Team, Cloud Security, Web Application Security

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

“How far?” and other project management methodologies

Why outsourcing web app development?

CSS in a Nutshell

Test Automation

Quick guide to minikube set up on local machine

How to Create a Calendar Table in MySQL and PostgreSQL using Recursive CTE

DevSecOps — Is this the next accident in line?

Functions in R: how to get your output

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
bigb0ss

bigb0ss

OSWE | OSCE | OSCP | CREST | Lead Offensive Security Engineer — All about Penetration Test, Red Team, Cloud Security, Web Application Security

More from Medium

Nullbyte-1: Vulnhub Walkthrough

THM -Nax Writeup

Aragog Walkthrough

TryHackMe: Principles of Security a Walkthrough