"Era" by Hack The Box - A "Medium" Linux Box Writeup

Table of Contents

Hack The Box Medium Boxes - This article is part of a series.

Part : "Signed" by Hack The Box - A "Medium" Windows Box Writeup

Part : This Article

Part : "Cypher" by Hack The Box - An "Medium" Linux Box Writeup

Part : "Puppy" by Hack The Box - An "Medium" Linux Box Writeup

Part : "The Frizz" by Hack The Box - An "Medium" Linux Box Writeup

Part : "Environment" by Hack The Box - An "Medium" Linux Box Writeup

Part : "Cat" by Hack The Box - A "Medium" Linux Box Writeup

Part : "Backfire" by Hack The Box - A "Medium" Linux Box Writeup

Part : "Heal" by Hack The Box - A "Medium" Linux Box Writeup

This box is a “Medium” Linux box by HackTheBox

User flag
#

usual first scans :
#

mkdir scans loot shares
nmap -A 10.10.11.79 -vvv -oA scans/first_scan
nmap -A 10.10.11.79 -vvv -p- -oA scans/full_scan
nmap -sU -A 10.10.11.79 --top-port 100 -vvv -oA scans/first_scan_udp

Outputs :

PORT   STATE SERVICE REASON         VERSION
21/tcp open  ftp     syn-ack ttl 63 vsftpd 3.0.5
80/tcp open  http    syn-ack ttl 63 nginx 1.18.0 (Ubuntu)
| http-methods: 
|_  Supported Methods: GET HEAD POST OPTIONS
|_http-title: Did not follow redirect to http://era.htb/
|_http-server-header: nginx/1.18.0 (Ubuntu)

Let’s edit the /etc/hosts file :

The content of this article is currently restricted due to HackTheBox’s policies. This blog post will remain private until the machine is retired. Have fun and don’t hesitate to DM me to ask questions on Discord (through the HTB Discord), Linkedin or on X ;)

In the meantime you can follow me on HTB :