chjwoo
blog project about
  3. Tags
  5. Web Exploitation
  • HackTheBox Knife Walkthrough

    HackTheBox Knife Walkthrough

    Knife is an easy Linux machine on HackTheBox that involves exploiting a backdoor in PHP 8.1.0-dev to gain initial access, followed by privilege escalation to root using a misconfigured sudo permission on the knife binary. This walkthrough covers reconnaissance, exploitation, and privilege escalation steps.

    c chjwoo
    October 30, 2025
    13 min read
    PHP Web Exploitation
  • HackTheBox Bashed Walkthrough

    HackTheBox Bashed Walkthrough

    Bashed is an easy Linux machine on HackTheBox that involves exploiting a web application vulnerability to gain initial access, followed by privilege escalation to root. This walkthrough covers reconnaissance, exploitation, and privilege escalation steps.

    c chjwoo
    October 14, 2025
    4 min read
    Command Injection Web Exploitation
  • HackTheBox BountyHunter Walkthrough

    HackTheBox BountyHunter Walkthrough

    BountyHunter walkthrough focusing on exploiting an XXE vulnerability in a bug reporting form to achieve Remote Code Execution (RCE) and privilege escalation to root.

    c chjwoo
    February 16, 2025
    10 min read
    XXE Injection Web Exploitation
  • HackTheBox Cap Walkthrough

    HackTheBox Cap Walkthrough

    Cap is an easy Linux machine that runs an HTTP server with administrative functions including network capturing. Improper access control leads to Insecure Direct Object Reference (IDOR) allowing access to other users.

    c chjwoo
    February 9, 2025
    6 min read
    Digital Forensics IDOR Web Exploitation
© 2025 All rights reserved.

Made with 🤍 by w1thre !