Introduction In this walkthrough, I targeted a Linux machine where ports 22 and 8090 were discovered open. Upon investigating port 8090, I identified an instance of Atlassian Confluence version 7....

Introduction I identified that ports 22 and 8000 were open. Navigating to port 8000 revealed a login portal for the Gerapy web application. By using default credentials, I successfully gained acce...

Introduction In this walkthrough, we will conduct an enumeration of a web application to identify an API endpoint that exposes sensitive user data. By exploiting this endpoint, we can gain SSH acc...

Introduction In this walkthrough, I will demonstrate how to exploit an unauthenticated arbitrary YAML write/update vulnerability in Grav CMS, which results in remote code execution (RCE) and provi...

Introduction In this walkthrough we will be solving Hack The Box Easy Linux box Pandora. The port scan reveals a SSH, web-server and SNMP service running on the box. Initial foothold is obtained b...

Introduction In this walkthrough, we will be solving the TryHackMe Medium Windows box Weasel. We first gained access by finding an open SMB share allowing anonymous login and retrieving a Jupyter ...

Introduction In this walkthrough we will be solving Hack The Box Medium Windows box Chatterbox. Let’s start .. Nmap TCP Run a quick Nmap TCP scan: sudo nmap -sV $IP --open UDP Check first ...

Introduction In this walkthrough we will be solving Hack The Box Easy Active Directory box Active. Let’s start .. Nmap TCP Run a quick Nmap scan: sudo nmap -sV $IP --open UDP Check top 100 ...

Introduction In this walkthrough we will be solving Proving Grounds Hard Windows box Peppo. Let’s start .. Nmap TCP Run a quick Nmap TCP scan: sudo nmap -sV $IP --open UDP Check top 100 UD...

Introduction In this walkthrough we will be solving Hack The Box Easy Windows box Netmon. Let’s start .. Nmap TCP Run a quick Nmap TCP scan: sudo nmap -sV $IP --open UDP Check first 100 UDP...