Example: HTB-Style Box Walkthrough
An example walkthrough showing the write-up format.
An example walkthrough you can use as a template for your own write-ups. Replace or delete it once you publish real content.
Recon
Start with a full port sweep and service version detection, then map the attack surface before touching anything.
nmap -sC -sV -p- -oA scans/initial 10.10.10.10
Enumeration
Walk the web app, note the tech stack, and look for the obvious footholds first: exposed admin panels, default creds, and anything that echoes user input back.
Foothold
Document the exact request or payload that worked, and why it worked. Keep it reproducible so future-you can follow the same path.
Privilege Escalation
Note the misconfiguration that gave up root: a writable service file, a sudo rule, a stale cron job, whatever it was.
Takeaways
Close with the one or two lessons worth remembering. That is the part that makes a write-up worth keeping.