) with your actual content.
3. Generate a hero banner and save it to:
assets//_banner.png
4. Place ALL screenshots/assets for this machine in:
assets//
Use descriptive filenames (e.g., soccer_nmap_scan.png, soccer_burp_intercept.png).
NEVER use generic names like image.png, image-1.png, etc.
5. Write in third-person, objective, professional tone throughout.
6. Over-explain every step — assume the reader is encountering each tool
and technique for the first time.
7. Use tables to present structured data (Nmap results, credentials, etc.).
8. Pair every major command with its output and, where possible, a screenshot.
Web browser screenshots MUST include the URL in the title to be automatically framed:
9. CRITICAL: NEVER fabricate or generate technical data. All command outputs,
scan results, credentials, hashes, IP addresses, hostnames, and version
numbers MUST come directly from the user's actual engagement. Only use
data the user explicitly provides. If data is missing, leave a placeholder
comment and ask the user.
10. The 'title' and 'description' frontmatter fields MUST be optimized for
SEO. Include high-value keywords (machine name, OS, key techniques,
CVEs) naturally. The description should be 150-160 characters and read
as a compelling search result snippet.
11. Delete this instruction block before publishing.
=============================================================================
→
title: 'HTB YOURBOXNAME Walkthrough' # SEO: Include machine name, "HTB", and "Walkthrough" in the title
description: 'A comprehensive, step-by-step walkthrough for the Hack The Box machine YOURBOXNAME.' # SEO: 150-160 chars, include key techniques, CVEs, and OS for search visibility
date: YYYY-MM-DD
difficulty: DIFFICULTY
os: YOUROS
authors:
- name: Bilash J. Shahi
title: Cybersecurity Professional
picture: https://avatars.githubusercontent.com/elodvk
url: https://purplesec.org
tags:
- Hack The Box
- HTB
- DIFFICULTY
- YOUROS
- Walkthrough
image: assets/YOURBOXNAME/YOURBOXNAME_banner.png
🛡️ HTB YOURBOXNAME Walkthrough
Machine Overview
| Attribute |
Details |
| Machine Name |
YOURBOXNAME |
| Operating System |
YOUROS |
| Difficulty |
DIFFICULTY |
| IP Address |
10.129.x.x |
Reconnaissance & Enumeration
Port Scanning
Nmap Service Scannmap -sC -sV -T4 -oA reports/YOURBOXNAME 10.129.x.x
Nmap OutputPORT STATE SERVICE VERSION
xx/tcp open ssh OpenSSH x.x
xx/tcp open http nginx x.x
...snip...
| Port |
State |
Service |
Version |
Notes |
| xx/tcp |
Open |
SSH |
OpenSSH x.x |
Standard secure shell access. |
| xx/tcp |
Open |
HTTP |
nginx/Apache x.x |
Web server hosting the primary application. |
Updating Local DNSecho "10.129.x.x YOURBOXNAME.htb" | sudo tee -a /etc/hosts
Directory Enumerationgobuster dir --url http://YOURBOXNAME.htb/ --wordlist /usr/share/seclists/Discovery/Web-Content/raft-medium-directories.txt -t 40
| Discovered Path |
HTTP Status |
Description |
/admin/ |
200 |
Administrative panel. Warrants further investigation. |
The Vulnerability
Exploitation
Executing the Exploit# Your exploit command here
Exploit Output# Paste the terminal output confirming successful exploitation
Reverse Shell & Stabilization
Starting Listenersudo nc -lvnp 443
Triggering Reverse Shell# Your reverse shell payload here
User Flag
Capturing User Flagcat /home/USERNAME/user.txt
Privilege Escalation
Enumeration for PrivEsc
Enumerating Privilegessudo -l
# or
find / -perm -4000 -type f 2>/dev/null
The Misconfiguration
Exploitation
Escalating Privileges# Your privilege escalation commands here
Confirming Root Accesswhoami
root
Root Flag
Capturing Root Flagcat /root/root.txt
Conclusion & Takeaways
- Vulnerability Name: Explanation of how to remediate the issue and why the fix is effective.
- Vulnerability Name: Explanation of how to remediate the issue and why the fix is effective.
Key Lessons
- Lesson Title: Detailed explanation of the lesson and its broader applicability.
- Lesson Title: Detailed explanation of the lesson and its broader applicability.