HTB Analytics Walkthrough

March 29, 2024, 4:57 a.m. | Eslam Omar

InfoSec Write-ups - Medium infosecwriteups.com

Hello hackers, I want to talk about how to solve Analytics Box in HTB, Let’s get started.

Enumeration

sudo nmap -sV -sC -sS -p 22,80 -oA scan/result 10.10.11.233

Now we have 2 ports HTTP and SSH let’s see HTTP.

HTTP Enumeration

We have a web application let’s see that.

let’s fuzz to see hidden directories, files, and subdomains, I’ll use Go-buster.

gobuster dir --url "<http://analytical.htb/>" -w /usr/share/dirb/wordlists/big.txt

This domain is a static website let’s see another subdomain.

Subdomains Enumeration

gobuster …

cybersecurity hackthebox htb-writeup infosec pentesting

Visit resource

More from infosecwriteups.com / InfoSec Write-ups - Medium

Subdomain takeover via AWS s3 bucket 4 days, 1 hour ago | infosecwriteups.com

attacker attackers aws aws s3 +18

Understanding the CrowdStrike 2024 Global Threat Report 4 days, 1 hour ago | infosecwriteups.com

adversaries analysis assets critical +25

Prevent Cross-Site Scripting Attacks in Node.js 4 days, 1 hour ago | infosecwriteups.com

attacks continue cross-site cybersecurity +14

HTB: Bizness walkthrough 4 days, 1 hour ago | infosecwriteups.com

cybersecurity hackthebox htb htb-writeup +1

HTB Business CTF 2024 — Submerged (Fullpwn)— Write-up 4 days, 1 hour ago | infosecwriteups.com

ctf ctf-writeup cybersecurity ethical hacking +1

CozyHosting HTB Easy | Walkthrough 4 days, 1 hour ago | infosecwriteups.com

ctf ctf-writeup hacking hackthebox +1

Blind SQL Injection: Uncovering Administrator Password One Character at a Time-Lab9 4 days, 1 hour ago | infosecwriteups.com

admin burpsuite hacking portswigger +1

Unlocking Superpowers: How to Gain Root Access in Ubuntu and Defeat ‘User not sudoers’ Error 4 days, 1 hour ago | infosecwriteups.com

access administration elevate error +15

All About API Security Pentesting 4 days, 1 hour ago | infosecwriteups.com

api security api security testing bug bounty owasp-api-security-top-10 +1

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote

View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC

View on infosec-jobs.com

all InfoSec news

HTB Analytics Walkthrough

Subdomains Enumeration

More from infosecwriteups.com / InfoSec Write-ups - Medium

Jobs in InfoSec / Cybersecurity

CyberSOC Technical Lead

Cyber Security Strategy Consultant

Cyber Security Senior Consultant

Sr. Product Manager

Corporate Intern - Information Security (Year Round)

Senior Offensive Security Engineer