Overview

The machine starts by Simple enumeration that discovers portal that has path traversal that lead to source code leak reading that source code revealed an attack vector combined with CVE with arbitrary files write after that found a vulnerable version of setuptools that lead to path traversal and wrote a root ssh key to get root shell

Enumeration

as always start with nmap

bash

Nmap scan report for 10.129.21.246
Host is up, received echo-reply ttl 63 (0.29s latency).
Scanned at 2026-04-02 17:01:15 EET for 15s
Not shown: 998 closed tcp ...

HTB Season 10: Variatype Writeup

Overview

Enumeration

`Share`

`Subscribe to the newsletter`