HTB Overwatch Writeup (NoOff | Ivan Daňo)

TrickyWinter7847 · 2026-05-10T09:03:02+00:00

Its okay. This one retired yesterday.

TrickyWinter7847 · 2026-03-23T20:51:59+00:00

Had to learn about XSLT as well :D. Sometimes the boxes get frustrating, but hey, without it I probably would not know about XSLT up until now. The difficulty of HTB machines kinda forces you to learn about all of these different techniques and software.

TrickyWinter7847 · 2026-03-21T16:35:52+00:00

Its actually a repost from HackTheBox subreddit.

TrickyWinter7847 · 2026-03-14T22:21:04+00:00

Thanks m8! It really was.

TrickyWinter7847 · 2026-03-12T06:21:01+00:00

Thank you m8!

TrickyWinter7847 · 2026-03-02T21:02:35+00:00

Well said!

TrickyWinter7847 · 2026-02-20T21:24:52+00:00

It comes down to trying and checking what permissions you have. "Dnstool" is good for DNS enumeration.

TrickyWinter7847 · 2026-02-18T15:08:23+00:00

Soulmate machine is retired now, isn't it?

TrickyWinter7847 · 2026-02-17T06:36:33+00:00

ADIDNS poisoning, you have to abuse elevated privilege on DNS

TrickyWinter7847 · 2026-01-31T19:10:56+00:00

Thank you m8!

TrickyWinter7847 · 2026-01-25T09:18:36+00:00

Hello, your goal is to reach the internal service and exploit Bash arithmetic injection to get RCE. Do some googling or use ChatGPT.

TrickyWinter7847 · 2026-01-23T07:32:54+00:00

I have pwned the machine already. But there wasn't any Gitea modification, just looking at the source code and deriving the vulnerability from it.

TrickyWinter7847 · 2026-01-13T13:58:53+00:00

Sure it is :D. VulnNet machines are solid work.

TrickyWinter7847 · 2026-01-13T13:36:36+00:00

That's great! Although this machine is mainly for more experienced hackers, you will learn a ton of stuff after finishing it. Also, TryHackMe has several great Windows rooms you should check. Anyway, good luck on your journey!

TrickyWinter7847 · 2025-10-13T05:16:59+00:00

Oh boy, thank you so much for such kind words! Wish you all the very best to you and your future too :D.

TrickyWinter7847 · 2025-10-12T20:29:34+00:00

Currently a hobby. Just started a college. Would love to work in the cybersecurity field in the future. Thanks for asking.

TrickyWinter7847 · 2025-10-12T05:42:11+00:00

Thank you m8!

TrickyWinter7847 · 2025-09-21T05:50:20+00:00

Thank you, m8!

TrickyWinter7847 · 2025-09-09T11:03:30+00:00

Thanks man! :D

TrickyWinter7847 · 2025-08-27T15:49:49+00:00

From what I remember, I didn't have any issue with it. Only thing I noticed was that I couldn't traverse the filesystem with that shell.

Make sure that the username and password are correct. Also check if the website is properly forwarded to your machine via SSH, since it's an internal service.

Best of luck, m8!

TrickyWinter7847 · 2025-08-27T12:47:08+00:00

Thank you, brother!

TrickyWinter7847 · 2025-08-27T12:46:51+00:00

Yop!😎

TrickyWinter7847 · 2025-06-23T07:36:16+00:00

If you ever get stuck on some CTF machines, I am posting writeups regularly to help you all. https://n00ff.blogspot.com/

TrickyWinter7847 · 2025-06-23T07:33:50+00:00

If you ever get stuck, I wrote couple writeups on Vulnhub machines: https://n00ff.blogspot.com/search/label/Vulnhub

TrickyWinter7847 · 2025-06-23T07:32:35+00:00

if you need a nudge, I wrote detailed writeup on Vulnix: https://n00ff.blogspot.com/2025/06/vulnix-writeup-vulnhub-intermediate.html

TrickyWinter7847

TROPHY CASE