Hack The Box Writeups

The most comprehensive Hack The Box writeup collection on GitHub.

Machine Finder Knowledge Graph View on GitHub

500+
Machines
400+
Challenges
70+
Sherlocks
6
ProLabs
14
CTF Events
5
Cert Guides

Interactive Tools

Machine Finder

Search, filter, and sort all HTB machines by difficulty, OS, technique, and certification relevance. Table and card views with real-time filtering.

Launch Finder

Knowledge Graph

Interactive force-directed graph mapping machines to techniques and certifications. Visualize relationships and discover what to hack next.

Explore Graph

Attack Paths

Visual flowcharts showing the complete attack chain for 25+ popular machines - from initial recon to root, with specific tools and CVEs.

View Paths

Skill Trees

Progression maps for Active Directory, web exploitation, Linux/Windows privilege escalation, and certification roadmaps with machine recommendations.

See Trees

Content Index

Section Description Count
Machines Boot2root walkthroughs (Easy to Insane) 300+
Challenges CTF-style challenges across 12 categories 400+
ProLabs Enterprise-grade lab walkthroughs 6
Sherlocks DFIR & Blue Team investigations 70+
CTF Events Official HTB CTF competition writeups 14 events
Endgames Multi-machine scenario walkthroughs 5
Fortresses Multi-flag single-host challenges 6
Cheatsheets Quick reference guides for pentesting 10
Cert Prep OSCP, CPTS, CRTO, CRTE machine mappings 5 certs
Methodology Approach guides and templates 3

Quick Start

For Beginners

  1. Start with Easy machines - they teach fundamentals
  2. Follow the Machine Approach Guide for a systematic method
  3. Use the OSCP Prep list if you are studying for certs
  4. Explore the Skill Trees to plan your learning path

For Intermediate Players

  1. Use the Machine Finder to filter by technique
  2. Work through a ProLab (start with Dante)
  3. Study the Attack Paths for machines you have completed
  4. Attempt Sherlock challenges for blue team skills

For Advanced Players

  1. Target Insane machines and Hard challenges
  2. Complete Cybernetics or APTLabs ProLabs
  3. Use the Knowledge Graph to find technique gaps
  4. Write and contribute your own writeups

Recently Added Machines (2025-2026)

Machine OS Difficulty Key Techniques
DarkZero Windows Hard Cross-Forest Trust, AD Abuse
Browsed Linux Medium Browser Extension Exploitation
Previous Linux Medium NextJS Exploitation
Fries Linux Hard Web Exploitation
Haze Windows Hard Splunk Enterprise Exploitation
Certificate Windows Hard ADCS Certificate Template Abuse
Vintage Windows Hard Pure Active Directory
Dog Linux Easy Backdrop CMS, Web Exploitation

Contributing

We welcome contributions! See the Contributing Guide for details.

Built with care for the infosec community. If this helped you pop a box or pass a cert, drop a star on GitHub.