Hack The Box - HTB Sorcery Writeup - Insane - Season 8 Weekly - June 14th, 2025

Between the cryptic echoes of open ports and encrypted streams lies a digital zen—a meditative revelation in each scan, urging us to see the hidden poetry of the cyber realm.

Shuvro Hawk

Hi, I'm Hawk🪽. I am currently a final-year Software Engineering student at the Islamic University of Technology (IUT) in Bangladesh🇧🇩. Since my sophomore year, I’ve been passionate about cybersecurity, constantly participating in Capture the Flags (CTF) and I never get tired of learning about digital security. Apart from computers, I enjoy exploring new technology, traveling, and meeting new people.

2025-06-17 2025-06-20T21:13:00

An image to describe post

Step 1: Recon / Enumeration

Run nmap:

nmap -T4 -vv -sC -sV -oN nmap/intial 10.129.161.83

Discovered open ports:
- 22/tcp -> SSH (OpenSSH 9.6p1)
- 443/tcp -> HTTPS (nginx/1.27.1)

Step 2: Web Enumeration

Access main website:
```
https://sorcery.htb/auth/login
```
Discover Gitea server:
```
https://git.sorcery.htb
```

Repo discovery:
An image to describe post

Code Review:
An image to describe post

Clone repository:

GIT_SSL_NO_VERIFY=true git clone https://git.sorcery.htb/nicole_sullivan/infrastructure.git

Step 3: Register User

#cybersecurity #meditative #exploration