Home Hack The Box - Diagnostic pwned!
Post
Cancel

Hack The Box - Diagnostic pwned!

Description

Our SOC has identified numerous phishing emails coming in claiming to have a document about an upcoming round of layoffs in the company. The emails all contain a link to diagnostic.htb/layoffs.doc. The DNS for that domain has since stopped resolving, but the server is still hosting the malicious document (your docker). Take a look and figure out what’s going owned-diagnostic.

Challenge results Diagnostic has been Pwned

Enjoy! ;)

This post is licensed under CC BY 4.0 by the author.