This is a fairly simple machine rated easy to intermediate. There is only one flag to capture root.txt.

This is an easy to intermediate box that shows you how you can exploit innocent looking php functions and lazy sys admins.

There are 4 flags in total to be found, and you will have to think outside the box and try alternative ways to achieve your goal of capturing all flags.

VM has been tested on VirtualBox 6.1.10 and VMWare (Fusion)

Enjoy! @theart42 and @4nqr34z


BBS: 1

foxlox 22 Jun 2020

Machine name: BBS (Bulletin Board System)

Level: High

flags: user, root

Description: this machine is a dip in the present and in the past, it requires a transversal competence from today to the mid 80-90s. Skills: developing, networking, GSM Messaging, Linux, X11, some MS-DOS commands

Author: foxlox

About VM: VirtualBox ready, the adapter is currently Bridged, DHCP active

You can contact me on Hack the box (, by email ([email protected]) or Discord foxlox#1089

Machine hint: FUZZ!!!

Welcome to "GainPower: 01"

This is a Boot2Root challenge.

  • Difficulty: Beginner to Intermediate
  • Goal: Get the user and root flag
  • DHCP: Enabled
  • Warning: Be careful with "rabbit hole" !.

This VM is created and tested with VirtualBox

Need hints? Twitter @VanshalG

Your feedback is really valuable to me! Twitter @VanshalG

Was there something that you didn’t like about this VM?

Please let me know so that I can make more interesting challenges in the future.

Good Luck..!!!

djinn: 3

0xmzfr 19 Jun 2020
  • Level: Intermediate
  • flags: root.txt
  • Description: The machine is VirtualBox as well as VMWare compatible. The DHCP will assign an IP automatically. You'll see the IP right on the login screen. You have to read the root flag.

Title: Glasgow Smile

  • Users: 5
  • Difficulty Level: Initial Shell (Easy) - Privileges Escalation (Intermediate)
  • Hint: Enumeration is the key.

If you are a newbie in Penetration Testing and afraid of OSCP preparation, do not worry. Glasgow Smile is supposed to be a kind of gym for OSCP machines.

The machine is designed to be as real-life as possible. Anyway, You will find also a bunch of ctf style challanges, it's important to have some encryption knowledge.

You need to have enough information about Linux enumeration and encryption for privileges escalation.

About the VM:

Just download, extract and load the .vmx file in VMware Workstation (tested on VMware Workstation 15.x.x)

The adapter is currently NAT, networking is configured for DHCP and IP will get assigned automatically


You can contact me on Hack the box ( or by email ([email protected]) for hints!

DefCon: 1

n0w4n 12 Jun 2020

Welcome to the agency! Here we look only for the best of the best.

Do you think you got what it takes? Then step up and show us what you got!

This is a Boot2Root challenge. The final goal is to take the flag in /root.

This VM is created and tested with VMWare, but Vbox also should work just fine.

Nataraj is a dancing avatar of Hindu God Shiva. His dance is called Tandava and it is only performed when he is most angry. Whoever interrupts his dance dies by Shiva while dancing. This is a Boot2Root challenge. Based on Nataraja. You only have to root the machine and find the root flag! All the best!

   #%&%&%&&&/        (&&&&%&&&*                   %&%&%&%%&&@*              
   %&%%%%%&&          &&%%%&%%#               (&&&&%%%%%%%%%%%&&&           
   (%&%&%&&%%        %%&%&%&%%,             %&&&%&%&%&&&%&%&%&%&%&&.        
    %%%%%%%%%&%&(#&%%%%%%%%%&#             &&%%%%%%%&&#/(%%&%&%%%%%&(       
     *&%%&%&%&%&%%&&%&%&%&&%.             #&%&%&%&&,        &%%&%&%&&.      
       .&&&%%%%%%%%%%%%%%%                &&&%%%%%&          %%%%%%%&/      
           ,%&%&%&%%%#,                   #&%&%&%&&*        &&%&%&%%&.      
            .&%%%%%&&.                     &&%%%%%%&%&(*/%&&%&%%%%%&(       
            .&%&%&%&&.                      %&&%%&%&%&%&%&%&%&%&&%%.        
            .&%%%%%&&.                        (&&%&%%%%%%%%%%%&&&           
            .&%&%&%&&.      gitroot by          .#&&&%&%&%&&*              
            .%%%%%%&&.      RECURSIVENULL         &%%%%%%&@               
            .&%&%&%%%.                              %&%&%&%%/               
            .&%%%%%%%(                             &&%%%%%%&                
            .&%&%&%&%&&                         #&&&%&%&&&&                 
   &%&%&%&%&         &%&%&%&&&                                              
   &%%%%%%&*         *%%%%%&&&                                              
   &&&%&%&&&         &%&%&%&%&                                              

The theme of this box is git.

The design of this box is HTB-like.

I will NOT be giving hints. Like a wise man once said "Try Harder"


  • Get a low privilege shell and read /home/pablo/user.txt
  • Get a root shell and read /root/root.txt

Difficulty: Intermediate

This box only works on VirtualBox

DHCP is enabled

All of the users on this box are named after my teachers and mentors, thank you Pablo, Beth, and Jen.

Have Fun!