HackMag – Page 18 – Tech magazine for cybersecurity specialists

Persistence cheatsheet. How to establish persistence on the target host and detect a compromise of your own system

Date: 11/01/2022

Author: s0i37

Once you have got a shell on the target host, the first thing you have to do is make your presence in the system ‘persistent’. In many real-life situations, you have only one RCE attempt and cannot afford losing access due to some unexpected event.

Read full article →

It’s a trap! How to create honeypots for stupid bots

Date: 01/01/2022

Author: Hackat and Mikhail Artyukhin

If you had ever administered a server, you definitely know that the password-based authentication must be disabled or restricted: either by a whitelist, or a VPN gateway, or in some other way. We decided to conduct an experiment and check what happens if this simple step isn’t taken.

Read full article →

Digging to the bottom. Escalating privileges to root with kernel exploitation techniques on a Hack The Box virtual machine

Date: 31/12/2021

Author: artex

This article discusses one of the most sophisticated PWN topics: kernel exploitation in Linux. You are about to learn what tools are required for kernel debugging, what are LKM, KGDB, IOCTL, and TTY, and many other exciting things!

Read full article →

The big heap adventure. Mastering heap exploitation techniques on a Hack The Box virtual machine

Date: 30/12/2021

Author: artex

This article covers the following topics: memory management algorithms in Linux, heap exploitation techniques, and exploitation of the Use-After-Free (UAF) vulnerability on a host where all protection mechanisms are enabled. The target machine is RopeTwo, one of the most hardcore VMs on Hack The Box.

Read full article →

Secrets of V8 Engine. Dissecting Chrome on a Hack The Box virtual machine

Date: 30/12/2021

Author: artex

No, this article isn’t about motor cylinders and valves – it’s about Google V8 Engine used in Chromium and Android. Today, I will show how to hack it on RopeTwo, the most hardcore VM on Hack The Box. Concurrently, you will learn what types of data are used in this engine, how to manipulate them in order to drop an exploit, how to use V8 debugging tools, what it WebAssembly, and how can it be used to penetrate into the RopeTwo shell.

Read full article →

Lateral movement guide: Remote code execution in Windows

Date: 30/12/2021

Author: s0i37

Penetration into the target network is just the first stage of a hacking attack. At the next stage, you have to establish a foothold there, steal users’ credentials, and gain the ability to run arbitrary code in the system. This article discusses techniques used to achieve the above goals and explains how to perform lateral movement in compromised networks.

Read full article →

Fatal mistakes. How to identify logical vulnerabilities in web apps

Date: 30/12/2021

Author: Twost

Analysis of all kinds of vulnerabilities is one of the main HackMag topics. In this article, I will use four classical pentesting tasks to explain how to identify bugs in web apps.

Read full article →