rd112.com
Sign In

StartingPoint

CTF/HTB › StartingPoint

HTB Included Walkthrough
HTB Included Walkthrough

Included demonstrates a sophisticated LFI-to-RCE chain. A Local File Inclusion vulnerability in a PH...

13 Mar 2026 CTF/HTB
HTB Unified Walkthrough
HTB Unified Walkthrough

Unified provides hands-on experience with Log4Shell (CVE-2021-44228) — arguably the most impactful v...

13 Mar 2026 CTF/HTB
HTB Vaccine Walkthrough
HTB Vaccine Walkthrough

Vaccine is a multi-stage machine that starts with an FTP server containing a password-protected ZIP ...

13 Mar 2026 CTF/HTB
HTB Oopsie Walkthrough
HTB Oopsie Walkthrough

Oopsie chains several web vulnerabilities into a full system compromise. The attack path starts with...

13 Mar 2026 CTF/HTB
HTB Tactics Walkthrough
HTB Tactics Walkthrough

Tactics escalates the SMB knowledge from Dancing into a full Windows compromise. Here the Administra...

13 Mar 2026 CTF/HTB
HTB Funnel Walkthrough
HTB Funnel Walkthrough

Funnel teaches one of the most practical real-world skills in penetration testing: SSH local port fo...

13 Mar 2026 CTF/HTB
HTB Bike Walkthrough
HTB Bike Walkthrough

Server-Side Template Injection (SSTI) occurs when user input is embedded into a server-side template...

13 Mar 2026 CTF/HTB
HTB Three Walkthrough
HTB Three Walkthrough

Three introduces cloud security fundamentals through an attack chain that combines subdomain enumera...

13 Mar 2026 CTF/HTB
HTB Ignition Walkthrough
HTB Ignition Walkthrough

Ignition presents a Magento e-commerce installation — one of the most widely deployed CMS platforms ...

13 Mar 2026 CTF/HTB
HTB Responder Walkthrough
HTB Responder Walkthrough

Responder combines two powerful techniques: Local File Inclusion (LFI) to force a Windows web applic...

13 Mar 2026 CTF/HTB
HTB Sequel Walkthrough
HTB Sequel Walkthrough

Sequel targets a MariaDB instance — a fully open-source MySQL fork — exposed on the network with a r...

13 Mar 2026 CTF/HTB
HTB Appointment Walkthrough
HTB Appointment Walkthrough

Appointment introduces SQL Injection (SQLi) the #3 vulnerability in the OWASP Top 10 and one of the ...

13 Mar 2026 CTF/HTB
Rsync HTB Synced Walkthrough
Rsync HTB Synced Walkthrough

Synced introduces rsync — a fast, incremental file transfer utility widely used for backups and depl...

13 Mar 2026 CTF/HTB
HTB Mongod Walkthrough
HTB Mongod Walkthrough

Mongod targets MongoDB the world's most popular NoSQL document database. Like Redis, MongoDB was des...

13 Mar 2026 CTF/HTB
HTB Preignition Walkthrough
HTB Preignition Walkthrough

Preignition introduces web directory enumeration the process of discovering hidden paths, admin pan...

13 Mar 2026 CTF/HTB
HTB Explosion Walkthrough
HTB Explosion Walkthrough

Explosion introduces RDP (Remote Desktop Protocol) Microsoft's graphical remote access protocol. In ...

13 Mar 2026 CTF/HTB
HTB Redeemer Walkthrough
HTB Redeemer Walkthrough

Redeemer introduces Redis a high-speed in-memory key-value store widely used for caching, session st...

13 Mar 2026 CTF/HTB
HTB Dancing Walkthrough
HTB Dancing Walkthrough

Dancing focuses on SMB (Server Message Block) — the protocol Windows uses for file sharing, printer ...

13 Mar 2026 CTF/HTB
HTB Fawn Walkthrough
HTB Fawn Walkthrough

Fawn introduces FTP anonymous access — one of the most frequently encountered misconfigurations in i...

13 Mar 2026 CTF/HTB
HTB Meow Walkthrough
HTB Meow Walkthrough

Meow is the very first machine in HackTheBox's Starting Point series. It introduces the most fundame...

13 Mar 2026 CTF/HTB