<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Vulnyx on zer0arc4</title><link>https://zer0arc4.github.io/tags/vulnyx/</link><description>Recent content in Vulnyx on zer0arc4</description><generator>Hugo</generator><language>en-us</language><lastBuildDate>Fri, 03 Jul 2026 12:15:17 +0530</lastBuildDate><atom:link href="https://zer0arc4.github.io/tags/vulnyx/index.xml" rel="self" type="application/rss+xml"/><item><title>BANK Writeup- Vulnyx</title><link>https://zer0arc4.github.io/writeups/vulnyx/bank-writeup-vulnyx/</link><pubDate>Sat, 30 May 2026 00:00:00 +0000</pubDate><guid>https://zer0arc4.github.io/writeups/vulnyx/bank-writeup-vulnyx/</guid><description>Exploited anonymous SMB access, leaked JWT credentials, bypassed file upload restrictions for RCE, recovered KeePass credentials, and abused Docker group membership to gain root.</description></item><item><title>Doctor Writeup - Vulnyx</title><link>https://zer0arc4.github.io/writeups/vulnyx/doctor-writeup-vulnyx/</link><pubDate>Fri, 29 May 2026 00:00:00 +0000</pubDate><guid>https://zer0arc4.github.io/writeups/vulnyx/doctor-writeup-vulnyx/</guid><description>Exploited LFI to retrieve an encrypted SSH key, cracked its passphrase, gained SSH access, and escalated privileges via a writable /etc/passwd file.</description></item><item><title>Eternal Writeup - Vulnyx</title><link>https://zer0arc4.github.io/writeups/vulnyx/eternal-writeup-vulnyx/</link><pubDate>Thu, 28 May 2026 00:00:00 +0000</pubDate><guid>https://zer0arc4.github.io/writeups/vulnyx/eternal-writeup-vulnyx/</guid><description>Identified a vulnerable Windows 7 host, confirmed MS17-010, exploited EternalBlue using Metasploit, and obtained NT AUTHORITY\SYSTEM privileges.</description></item><item><title>FING Writeup - Vulnyx</title><link>https://zer0arc4.github.io/writeups/vulnyx/fing-writeup-vulnyx/</link><pubDate>Mon, 25 May 2026 00:00:00 +0000</pubDate><guid>https://zer0arc4.github.io/writeups/vulnyx/fing-writeup-vulnyx/</guid><description>Enumerated users through the Finger service, obtained SSH access with weak credentials, and escalated privileges via a vulnerable doas rule.</description></item><item><title>Lower7 Writeup - Vulnyx</title><link>https://zer0arc4.github.io/writeups/vulnyx/lower7-writeup-vulnyx/</link><pubDate>Sat, 16 May 2026 00:00:00 +0000</pubDate><guid>https://zer0arc4.github.io/writeups/vulnyx/lower7-writeup-vulnyx/</guid><description>Recovered FTP credentials from a leaked username, uploaded a Node.js reverse shell, obtained access as a low-privileged user, and escalated privileges by cracking the root password hash.</description></item><item><title>Lower6 Writeup - Vulnyx</title><link>https://zer0arc4.github.io/writeups/vulnyx/lower6-writeup-vulnyx/</link><pubDate>Fri, 15 May 2026 00:00:00 +0000</pubDate><guid>https://zer0arc4.github.io/writeups/vulnyx/lower6-writeup-vulnyx/</guid><description>Enumerated a Redis instance, recovered stored credentials, gained SSH access, and abused a misconfigured gdb capability to obtain root privileges.</description></item><item><title>Lower5 Writeup - Vulnyx</title><link>https://zer0arc4.github.io/writeups/vulnyx/lower5-writeup-vulnyx/</link><pubDate>Thu, 14 May 2026 00:00:00 +0000</pubDate><guid>https://zer0arc4.github.io/writeups/vulnyx/lower5-writeup-vulnyx/</guid><description>Exploited an LFI vulnerability to poison Apache logs, gained a reverse shell, abused sudo permissions, cracked a GPG passphrase, and recovered root credentials.</description></item><item><title>Lower3 Writeup - Vulnyx</title><link>https://zer0arc4.github.io/writeups/vulnyx/lower3-writeup-vulnyx/</link><pubDate>Wed, 13 May 2026 00:00:00 +0000</pubDate><guid>https://zer0arc4.github.io/writeups/vulnyx/lower3-writeup-vulnyx/</guid><description>Mounted an exposed NFS share, uploaded a PHP reverse shell, gained initial access, and escalated privileges through a writable web root and SUID Bash.</description></item><item><title>Lower4 Writeup - Vulnyx</title><link>https://zer0arc4.github.io/writeups/vulnyx/lower4-writeup-vulnyx/</link><pubDate>Tue, 12 May 2026 00:00:00 +0000</pubDate><guid>https://zer0arc4.github.io/writeups/vulnyx/lower4-writeup-vulnyx/</guid><description>Enumerated a valid user using the Ident protocol, brute-forced SSH credentials, and abused sudo access to multitail to obtain root privileges.</description></item><item><title>Lower2 Writeup - Vulnyx</title><link>https://zer0arc4.github.io/writeups/vulnyx/lower2-writeup-vulnyx/</link><pubDate>Sun, 10 May 2026 00:00:00 +0000</pubDate><guid>https://zer0arc4.github.io/writeups/vulnyx/lower2-writeup-vulnyx/</guid><description>Enumerated services, identified a username from an SSH banner, brute-forced Telnet credentials, and gained root by modifying a writable /etc/shadow file.</description></item><item><title>Lower Writeup - Vulnyx</title><link>https://zer0arc4.github.io/writeups/vulnyx/lower-writeup-vulnyx/</link><pubDate>Sat, 09 May 2026 00:00:00 +0000</pubDate><guid>https://zer0arc4.github.io/writeups/vulnyx/lower-writeup-vulnyx/</guid><description>Discovered a hidden virtual host, generated custom passwords using CeWL, obtained SSH access through weak credentials, and escalated privileges by modifying a writable /etc/group file.</description></item></channel></rss>