====== HACK THE BOX ======

[[https://www.hackthebox.com/ | HTB]]: A Massive Hacking Playground

----

===== Legacy =====

  * [[https://eslam3kl.medium.com/hack-the-box-legacy-c245030172ae | Link to Box]]
  * IP: 10.10.10.4
  * Me: 10.10.14.25

**Steps to Exploit: **

1. The initial scans gave me smb information.

1A. Masscan: 

<code>
masscan 10.10.10.4 -p1-65535,U:1-65535 --rate=1000 -e tun0
# -p1-65535,U:1-65535 # scan all TCP/UDP ports
# --rate=1000         # scan rate = 1000 packets per second
# -e tun0             # listen on the VPN network interface for responses

Starting masscan 1.0.5 (http://bit.ly/14GZzcT) at 2020-09-20 23:05:00 GMT
 -- forced options: -sS -Pn -n --randomize-hosts -v --send-eth
Initiating SYN Stealth Scan
Scanning 1 hosts [131070 ports/host]
Discovered open port 445/tcp on 10.10.10.4  # SMB Protocol
Discovered open port 137/udp on 10.10.10.4  # NetBIOS Name Service
Discovered open port 139/tcp on 10.10.10.4  # etBIOS Session Service
rate:  0.00-kpps, 100.00% done, waiting -308-secs, found=2
</code>

1B. Nmap

... I need a better way to write up my walk-throughs... 

----