Tag: windows

All the articles with the tag "windows".

• HTB Responder — LFI to NTLM Hash Capture

  10 May, 2026

  HackTheBox Responder exploits an LFI vulnerability to force the Windows server to authenticate to a rogue SMB server, capturing and cracking the administrator's NetNTLMv2 hash. The same pattern — user-controlled input redirecting an authenticated outbound connection — shows up in LLM agents leaking API tokens via prompt injection.

• HTB Dancing — When the File Share Has No Lock

  3 Apr, 2026

  HackTheBox Dancing exploits unauthenticated SMB share access on a Windows host. The failure — a storage layer with no credential gate — is structurally identical to the unprotected vector databases and RAG retrieval endpoints showing up in production AI deployments.