Introduction In this walkthrough, we will conduct an enumeration of a web application to identify an API endpoint that exposes sensitive user data. By exploiting this endpoint, we can gain SSH acc...

Introduction In this walkthrough, I will demonstrate how to exploit an unauthenticated arbitrary YAML write/update vulnerability in Grav CMS, which results in remote code execution (RCE) and provi...

Introduction In this walkthrough we will be solving Hack The Box Easy Linux box Pandora. The port scan reveals a SSH, web-server and SNMP service running on the box. Initial foothold is obtained b...

Introduction In this walkthrough, we will be solving the TryHackMe Medium Windows box Weasel. We first gained access by finding an open SMB share allowing anonymous login and retrieving a Jupyter ...

Introduction In this walkthrough we will be solving Hack The Box Medium Windows box Chatterbox. Let’s start .. Nmap TCP Run a quick Nmap TCP scan: sudo nmap -sV $IP --open UDP Check first ...

Introduction In this walkthrough we will be solving Hack The Box Easy Active Directory box Active. Let’s start .. Nmap TCP Run a quick Nmap scan: sudo nmap -sV $IP --open UDP Check top 100 ...

Introduction In this walkthrough we will be solving Proving Grounds Hard Windows box Peppo. Let’s start .. Nmap TCP Run a quick Nmap TCP scan: sudo nmap -sV $IP --open UDP Check top 100 UD...

Introduction In this walkthrough we will be solving Hack The Box Easy Windows box Netmon. Let’s start .. Nmap TCP Run a quick Nmap TCP scan: sudo nmap -sV $IP --open UDP Check first 100 UDP...

Introduction In this walkthrough we will be solving Hack The Box Easy Windows box Jerry. Let’s start .. Nmap TCP Run a quick Nmap TCP scan: sudo nmap -sV $IP --open UDP Check top 100 UDP p...

Introduction In this walkthrough we will be solving Hack The Box Intermediate Active Directory Windows box Escape. Let’s start .. Nmap TCP Run a quick Nmap scan: sudo nmap -sV $IP --open UD...