<p><img src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEip-vFVQBWdPtxZe2mZU0GIKc8bv1PS_rN60UNtdCC_0gRo3HImNeBFjlbnLea7OCFgMzV9G8BRAUhIpzJBf1AvN3Vb651d1s40ndI7MDrvfoyR23ep_K3CFhJud1-L3H6qT4sxvwLi1-QMBNGTavyNGoXP10-vqr0zELsE7xm6uo4tzq6C81cNM_4fxXyR/s16000-rw/Mist%20HTB%20Writeup.png" alt="Mist HTB Writeup" /></p>
<h2 id="heading-introduction">Introduction</h2>
<p>Today, I'll be diving into <strong>Mist Writeup</strong>, a Windows box on Hack The Box created by <a target="_blank" href="https://app.hackthebox.com/users/184611"><strong>Geiseric</strong></a>, to hack it. Throughout this post, I'll detail my journey and share how I successfully breached <strong>Mist</strong> to retrieve the flags.</p>
<p>Since I'm still honing my skills, I'll occasionally reference the official <strong>Mist Walkthrough</strong> for guidance. Consider this write-up as more of a personal blog documenting my experience rather than a comprehensive step-by-step guide.</p>
<h2 id="heading-mist-hacking-phases"><strong>Mist</strong> Hacking Phases</h2>
<h3 id="heading-initial-access"><strong>Initial Access</strong></h3>
<ol>
<li><h4 id="heading-nmap-tcp-port-scan"><strong>Nmap TCP Port Scan</strong></h4>
</li>
<li><h4 id="heading-web-page-enumeration"><strong>Web Page Enumeration</strong></h4>
</li>
<li><h4 id="heading-directory-bruteforce"><strong>Directory Bruteforce</strong></h4>
</li>
<li><h4 id="heading-vulnerability-assessment"><strong>Vulnerability Assessment</strong></h4>
</li>
<li><h4 id="heading-server-side-template-injection-exploitation"><strong>Server-Side Template Injection Exploitation</strong></h4>
</li>
<li><h4 id="heading-user-flag"><strong>User Flag</strong></h4>
</li>
</ol>
<h3 id="heading-full-writeup-read-morehttpswwwhackerhqtech202403mist-htbhtml"><a target="_blank" href="https://www.hackerhq.tech/2024/03/mist-htb.html"><strong>Full</strong> Writeup <strong>- Read More!</strong></a></h3>


![Mist HTB Writeup](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEip-vFVQBWdPtxZe2mZU0GIKc8bv1PS_rN60UNtdCC_0gRo3HImNeBFjlbnLea7OCFgMzV9G8BRAUhIpzJBf1AvN3Vb651d1s40ndI7MDrvfoyR23ep_K3CFhJud1-L3H6qT4sxvwLi1-QMBNGTavyNGoXP10-vqr0zELsE7xm6uo4tzq6C81cNM_4fxXyR/s16000-rw/Mist%20HTB%20Writeup.png align="left")

## Introduction

Today, I'll be diving into **Mist Writeup**, a Windows box on Hack The Box created by [**Geiseric**](https://app.hackthebox.com/users/184611), to hack it. Throughout this post, I'll detail my journey and share how I successfully breached **Mist** to retrieve the flags.

Since I'm still honing my skills, I'll occasionally reference the official **Mist Walkthrough** for guidance. Consider this write-up as more of a personal blog documenting my experience rather than a comprehensive step-by-step guide.

## **Mist** Hacking Phases

### **Initial Access** 

1. #### **Nmap TCP Port Scan**
    
2. #### **Web Page Enumeration**
    
3. #### **Directory Bruteforce**
    
4. #### **Vulnerability Assessment**
    
5. #### **Server-Side Template Injection Exploitation**
    
6. #### **User Flag**
    

### [**Full** Writeup **\- Read More!**](https://www.hackerhq.tech/2024/03/mist-htb.html)

Mist HTB Writeup | HacktheBox

Introduction

Mist Hacking Phases

Initial Access

Nmap TCP Port Scan

Web Page Enumeration

Directory Bruteforce

Vulnerability Assessment

Server-Side Template Injection Exploitation

User Flag

Full Writeup - Read More!

HackerHQ