• 

  🔒

  June 15, 2026

  DevHub Machine (HackTheBox) — Step-by-Step WalkthroughActive

  hacktheboxlinuxmediummcprcejupyterlateral-movementprivilege-escalation

  DevHub is a Linux machine compromised via CVE-2026-23744, an unauthenticated RCE in MCPJam v1.4.2, followed by lateral movement through an exposed Jupyter Lab instance with a plaintext token, and privilege escalation via a hardcoded API key in an internal Flask service running as root.

  View details →
• 

  December 7, 2025

  Blackpearl Machine (TCM Security) — Step-by-Step Walkthrough

  linuxeasyvirtual-hostsuidprivilege-escalation

  Compromise of a Linux machine via DNS reconnaissance to discover a virtual host running Navigate CMS v2.8, exploited through an unauthenticated RCE vulnerability, followed by privilege escalation via a SUID misconfiguration on php7.3.

  Read more →
• 

  December 5, 2025

  Butler Machine (TCM Security) — Step-by-Step Walkthrough

  windowsjenkinsprivilege-escalation

  Compromise of a Windows machine via Jenkins default credentials and Groovy script RCE, followed by privilege escalation through an unquoted service path vulnerability in the WiseBootAssistant service.

  Read more →
• 

  November 30, 2025

  Dev Machine (TCM Security) — Step-by-Step Walkthrough

  linuxlfiprivilege-escalationboltwire

  Compromise of a Linux machine via NFS enumeration, zip password cracking, and a BoltWire LFI vulnerability to obtain SSH credentials, followed by privilege escalation using a sudo zip GTFOBins exploit.

  Read more →
• 

  November 13, 2025

  Academy — Privilege Escalation & Exploitation Walkthrough (TCM Security)

  linuxprivilege-escalationweb-exploitationreverse-shell

  Linux machine compromise via FTP anonymous access and web CMS exploitation, followed by privilege escalation through cron misconfiguration leading to root access.

  Read more →
• 

  November 13, 2025

  EternalBlue (MS17-010) — Windows 7 SP1 Exploitation Walkthrough

  windowseasyms17-010eternalblue

  Compromise of a Windows 7 SP1 lab machine by exploiting the MS17-010 EternalBlue SMB vulnerability via Metasploit to obtain a SYSTEM-level Meterpreter shell and extract password hashes, followed by a manual exploitation attempt using AutoBlue that resulted in a BSOD.

  Read more →
• 

  October 24, 2025

  Kioptrix Level 1 (VulnHub) — Gaining Root with Metasploit

  linuxvulnhubeasymachine

  Compromise of a VulnHub Linux machine by enumerating an exposed Samba 2.2.1a service, identifying the trans2open buffer overflow vulnerability, and exploiting it via Metasploit to obtain a root shell directly.

  Read more →
• 

  September 21, 2025

  Soulmate

  linuxMachineEasycve-2025-31161privilege-escalationHackTheBox

  Compromise of a Linux HackTheBox machine via CVE-2025-31161 authentication bypass on CrushFTP to gain admin access, followed by PHP reverse shell upload, credential extraction from a hardcoded Erlang script, and root flag retrieval through an exposed Erlang shell on port 2222.

  Read more →
• 

  August 27, 2025

  CodePartTwo

  linuxjavascriptjs2pycve-2024-28397sandbox-escapereverse-shellprivilege-escalationEasyHackTheBoxMachine

  Compromise of a Linux HackTheBox machine via a js2py sandbox escape (CVE-2024-28397) in a web-based JavaScript editor to gain a shell, followed by credential extraction from a SQLite database and privilege escalation by abusing sudo npbackup-cli to read the root flag.

  Read more →
• 

  August 25, 2025

  Knowledge Check Machine (HackTheBox) — Step-by-Step Walkthrough

  linuxhacktheboxeasyprivilege-escalation

  Compromise of a Linux HackTheBox machine running GetSimple CMS, exploited through credential discovery in exposed data files, admin panel access, and a PHP reverse shell upload, followed by privilege escalation via a sudo misconfiguration on php binary.

  Read more →