HTB Audit Log on Ghost-Hydra Intelligencehttps://JoseMariaMicoli.github.io/htb-reports/Recent content in HTB Audit Log on Ghost-Hydra IntelligenceHugoen-usSun, 25 Jan 2026 00:00:00 +0000HTB Imagery Pentest Reporthttps://JoseMariaMicoli.github.io/htb-reports/imagery/pentest/Sun, 25 Jan 2026 00:00:00 +0000https://JoseMariaMicoli.github.io/htb-reports/imagery/pentest/<h1 id="penetration-testing">PENETRATION TESTING</h1> <p><strong>Target:</strong> Imagery (10.129.21.11)<br> <strong>Date:</strong> February 07, 2026<br> <strong>Auditor:</strong> Jose Maria Micoli <strong>Classification:</strong> <strong>CONFIDENTIAL / RESTRICTED</strong><br> <strong>Audit ID:</strong> IMG-2026-02-07-001</p> <hr> <h2 id="1-executive-summary">1. Executive Summary</h2> <p>A rigorous forensic audit and penetration test was conducted against the <strong>Imagery</strong> infrastructure (10.129.21.11). The assessment successfully identified and exploited a chain of critical vulnerabilities resulting in full System Administrator (Root) compromise.</p> <p>The attack vector began with <strong>Stored Cross-Site Scripting (XSS)</strong> in the administrative ticketing system, leading to <strong>Session Hijacking</strong>. Administrative access facilitated <strong>Local File Inclusion (LFI)</strong>, exposing the application&rsquo;s entire source code and sensitive configuration files. Source code analysis revealed an <strong>Authenticated Remote Code Execution (RCE)</strong> vulnerability in the image processing logic (<code>ImageMagick</code>), which was exploited to gain a foothold as the <code>web</code> user.</p>HTB Imagery Walkthroughhttps://JoseMariaMicoli.github.io/htb-reports/imagery/walkthrough/Sun, 25 Jan 2026 00:00:00 +0000https://JoseMariaMicoli.github.io/htb-reports/imagery/walkthrough/<h1 id="hackthebox-walkthrough-imagery">HackTheBox Walkthrough: Imagery</h1> <p>Welcome to the walkthrough for <strong>Imagery</strong>, a machine that tests our ability to chain web vulnerabilities, analyze source code for secure coding errors, and perform forensic-style enumeration to move laterally.</p> <p><strong>Difficulty:</strong> Medium/Hard<br> <strong>Target IP:</strong> 10.129.21.11<br> <strong>OS:</strong> Linux</p> <hr> <h2 id="1-executive-summary-tldr">1. Executive Summary (TL;DR)</h2> <p>Our journey begins with a stored Cross-Site Scripting (XSS) vulnerability in a bug reporting system, which we leverage to hijack an administrator&rsquo;s session. With administrative access, we discover a Local File Inclusion (LFI) flaw, allowing us to dump the application&rsquo;s source code and database.</p>