Note
To avoid pain and suffering, we are trying to collect all boxes mainly from HTB which have a Client-Side attack portion.
If you want to contribute, feel free to PR and add your emotional connection or remembrance with the box on the Fuckup Level section.
Help to safe others and their sanity - thanks.
| Name | Rating | OS | Fuckup Level 1-5 | Description | Listed as CS on HTB | Verified by a poor soul | URL |
|---|---|---|---|---|---|---|---|
| Alert | Easy | Linux | No puke here | Required for foothold but it actually works quite well! | no | yes | https://www.hackthebox.com/machines/alert |
| Anubis | Insane | Windows | 🤮🤮🤮🤮🤮 | You will learn to hate on a new level. Broken scheduled task gave us hell. | no | yes | https://www.hackthebox.com/machines/anubis |
| Axlle | Hard | Windows | 🤮🤮🤮🤮🤮 | Foothold is fun (not). | no | yes | https://www.hackthebox.com/machines/axlle |
| BlockBlock | Hard | Linux | It was actually not that bad | Stealing stuff to get to the foothold but it worked fine. | no | yes | https://www.hackthebox.com/machines/blockblock |
| Bookworm | Insane | Linux | 🤮🤮🤮 | n/a | no | yes | https://www.hackthebox.com/machines/bookworm |
| Cat | Medium | Linux | 🤮🤮🤮 | Double client-side part. | no | yes | https://www.hackthebox.com/machines/cat |
| Catch | Linux | Medium | RATE ME! | n/a | yes | no | https://www.hackthebox.com/machines/catch |
| Derailed | Linux | Insane | RATE ME! | n/a | no | yes | https://www.hackthebox.com/machines/derailed |
| Explore | Android | Easy | RATE ME! | n/a | yes | no | https://www.hackthebox.com/machines/explore |
| Extension | Linux | Hard | RATE ME! | n/a | yes | no | https://www.hackthebox.com/machines/extension |
| FormulaX | Linux | Hard | 🤮 | Client-Side part was cookie stealing. | no | yes | https://www.hackthebox.com/machines/formulax |
| Intfiltrator | Windows | Insane | 🤮 | Client-Side nearly at the end of the box. Just a little bit annoying to deal with. | no | yes | https://www.hackthebox.com/machines/infiltrator |
| MagicGardens | Linux | Insane | 🤮🤮🤮🤮 | Foothold WTF.. | no | yes | https://www.hackthebox.com/machines/magicgardens |
| Mailing | Easy | Linux | 🤮🤮 | Weird hint about the client-side attack but the attack itself is very stable. Prepare to deal with LO. | yes | no | https://www.hackthebox.com/machines/mailing |
| Mailroom | Linux | Hard | RATE ME! | n/a | yes | no | https://www.hackthebox.com/machines/mailroom |
| Mist | Windows | Insane | NONE! | Client-Side after foothold which actually works! | no | yes | https://www.hackthebox.com/machines/mist |
| PikaTwoo | Linux | Insane | 🤮🤮 | n/a | yes | no | https://www.hackthebox.com/machines/pikatwoo |
| Sandworm | Linux | Medium | RATE ME! | n/a | yes | no | https://www.hackthebox.com/machines/sandworm |
| Sea | Linux | Easy | 🤮 | Not that bad, it actually worked | no | yes | https://www.hackthebox.com/machines/sea |
| Sightless | Linux | Easy | 🤮🤮🤮 | Very aggressive configuration! | no | yes | https://www.hackthebox.com/machines/sightless |
| Tally | Windows | Hard | RATE ME! | n/a | yes | no | https://www.hackthebox.com/machines/tally |
| University | Windows | Insane | 🤮 | Unfortunately too many unintended ways to solve this box! Client-side part comes later in the box into play | no | no | https://www.hackthebox.com/machines/university |
| Unrested | Linux | Medium | Nothing to puke about | Required for foothold but actually works | no | no | https://www.hackthebox.com/machines/unrested |