HackTheBox — Writeup

4 min readApr 12, 2023

This machine was rated as an “Easy” level machine and required the attacker to exploit a vulnerable web application to gain access to the machine.


The first step in any penetration testing exercise is reconnaissance. In this step, we gather as much information about the target machine as possible. We can start by running a port scan using nmap: