HackTheBox Writeup — DropZone

NMAP Scan Results

TFTP Enumeration

scanner/tftp/tftpbrute

Connecting To TFTP

TFTP Connection

MOF Code

Creating test.exe Backdoor

msfvenom

Uploading our files using through TFTP

Uploading Files Through TFTP
Meterpreter

Meterpreter Shell

sysinfo/getuid

Getting The Flags

2 for the price 1!.txt
The Flags

User Flag → a6a4830ddd27a1bddd59d2aaa80f7940
Root Flag → 3316ffe05fada8f8e651931a5c45edab

Vulnerabilities Used To Solve This Box :-

References

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Faisal Husaini

Faisal Husaini

Hacker | Red Teamer | Python Coder | Gamer | Reverse Engineering Lover