HTB - Helix

Helix HTB

Initial Enumeration

Nmap Scan

nmap -sC -sV -oA helix 10.129.60.0

Results:

PORT   STATE SERVICE VERSION
22/tcp open  ssh     OpenSSH 8.9p1 Ubuntu 3ubuntu0.15
80/tcp open  http    nginx 1.18.0 (Ubuntu)
|_http-title: Did not follow redirect to http://helix.htb/

Add to /etc/hosts

echo "10.129.60.0 helix.htb" >> /etc/hosts

Web Reconnaissance

Visiting http://helix.htb shows a static “Industrial Operator” page. Nothing interactive.

Vhost Fuzzing

ffuf -u http://10.129.60.0 -H "Host: FUZZ.helix.htb" \
     -w /usr/share/wordlists/seclists/Discovery/DNS/subdomains-top1million-20000.txt \
     -mc all -ac

Result: flow.helix.htb [Status: 200]

Add to /etc/hosts

echo "10.129.60.0 flow.helix.htb" >> /etc/hosts

If you want the full Helix HTB writeup and post‑exploitation steps, please support via Ko‑fi. If you don’t want to, just email me at sensurajit@proton.me and I’ll share it.