Overview Imagery is a Medium-rated Linux machine on HackTheBox that chains together several classic web vulnerabilities in a cool sequence: session token analysis, Cross-Site Scripting (XSS) for session hijacking, and Local File Inclusion (LFI) to pull sensitive files from the server. It's a great box for practising client-side

Overview Cypher is a Medium-rated Linux machine on HackTheBox that lives up to its name. The entire foothold revolves around Cypher Injection against a Neo4j graph database, the graph query language equivalent of SQL injection. The box also features a clever custom procedure abuse for RCE and a sudo misconfiguration

Overview Expressway is an Easy-rated Linux machine on HackTheBox that takes you off the beaten path of typical web enumeration and into the world of VPN protocols. The box centers around IKE/ISAKMP, the protocol behind IPsec VPNs and chains a PSK hash crack with a recent sudo privilege escalation

Overview Dog is an Easy-rated Linux machine on HackTheBox that covers a realistic attack chain involving a misconfigured CMS, credential reuse, and a sudo misconfiguration leading to privilege escalation. It's a great box for practicing enumeration and understanding how common web CMS vulnerabilities can be chained together. Enumeration

// writeups / HackTheBox Hack The Box — Machine Writeup Cap. Easy Linux Mar 7, 2026 IDOR · FTP Sniffing · Linux Capabilities Cap is an easy Linux machine hosting a security dashboard with a classic IDOR vulnerability. A network capture exposes FTP credentials in plaintext, granting an initial foothold. Privilege escalation abuses a misconfigured