HTB Planning Machine Walkthrough | Easy HackTheBox Guide for Beginners Welcome to the WhyWriteUps articles, where we explain every step we made and why we made it. I have been solving machines for …

InfoSecWriteUps' platform is  dedicated to providing insights and resources for cybersecurity professionals and enthusiasts. Through articles, tutorials, and security research, InfoSecWriteUps offers insights into cybersecurity vulnerabilities, attack techniques, and defense strategies. Readers can learn about penetration testing, threat intelligence, and incident response to enhance their cybersecurity knowledge and skills.

InfoSec Write-ups

A detailed walkthrough of exploiting the HTB Planning machine, featuring a vulnerable Grafana 11.0.0 instance affected by CVE-2024-9264. The guide covers enumeration with nmap and ffuf, exploiting the Grafana vulnerability for remote code execution, obtaining SSH access through discovered credentials, and achieving privilege escalation via a cron job management interface. The tutorial emphasizes explaining each command and technique for beginners learning penetration testing.

HTB Planning Machine Walkthrough | Easy HackTheBox Guide for Beginners

Grafana security release: Critical severity fix for CVE-2024-9264 | Grafana Labs

GitHub - nollium/CVE-2024-9264: Exploit for Grafana arbitrary file-read and RCE (CVE-2024-9264)

HTB Cicada Machine Walkthrough | Easy HackTheBox Guide for Beginners

Get SeverSerenity’s stories in your inbox

HTB Vintage Machine Walkthrough | Easy HackTheBox Guide for Beginners

HTB Cap Machine Walkthrough | Easy HackTheBox Guide for Beginners

HTB Escape Machine Walkthrough | Easy HackTheBox Guide for Beginners