by4kugan

By4kugan

@by4kugan

He/him

Cybersecurity student focused on network security and Red Teaming. Passionate about ethical hacking, Active Directory, and CTFs. I improve my skills through labs, TryHackMe,HTB and real-world simulations, aiming to become a professional Red Team operator.

Mystic Hackers

Writer

14 XP

1230

CyberMyst

Novice

15 XP

HackTheBox — Pirate 🏴‍☠️

Hard Windows Active Directory machine. Multiple AD misconfigurations chained together to fully compromise the domain.

by4kugan

143

HTB

Interpreter — HackTheBox Writeup

Interpreter is a Linux machine running Mirth Connect, a healthcare integration platform. Initial access exploits an unauthenticated RCE. A PBKDF2 password hash is then extracted from the local MariaDB instance, cracked offline to obtain SSH access. Privilege escalation abuses a Python `eval()` injection in a root-owned local Flask service, allowing arbitrary file reads including the root flag.

by4kugan

1.4k

HTB

Pterodactyl — HackTheBox Writeup

Pterodactyl is a Linux machine running the Pterodactyl Panel game server management software. Initial access is achieved through a PEAR LFI/RCE chain that allows writing a PHP webshell, followed by credential extraction from the database. Privilege escalation chains two CVEs together: PAM environment injection and udisks LPE via libblockdev, ultimately leading to a SUID bash root shell.

by4kugan

1.5k

HTB

WingData — HackTheBox Writeup

WingData is a Linux machine running a vulnerable instance of Wing FTP Server. Initial access is achieved through an unauthenticated Remote Code Execution vulnerability that allows Lua injection via the web interface. Privilege escalation exploits a Python tarfile symlink filter bypass to write arbitrary files as root.

by4kugan

1.0k

HTB