PHP Static-Eval Exploitation | HackTheBox Baby Breaking Grad
We covered basic white box penetration test by inspecting, analyzing and exploiting a web application source code that contains…
We covered basic white box penetration test by inspecting, analyzing and exploiting a web application source code that contains…
We covered a scenario where we performed a vulnerability scanning with Nikto on a vulnerable windows machine that led…
We covered the recent Microsoft Outlook NTLM Vulnerability CVE-2023-23397 that could lead to NTLM hash leak if successful. Also…
In this post, we covered the eternal blue exploit as part of HackTheBox Beginner Track. Machine Name : HackTheBox…
Introduction We covered the recent vulnerability CVE-2022-26923 that affected Microsoft Windows Active Directory Certificate Service which allowed for local…
Introduction Per Microsoft, “A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file…
In this post, we demonstrated how to exploit SSRF to discover internal hidden services. We performed privilege escalation using…
Premise In this video walkthrough, we covered a vulnerability in Jackson library that uses JSON Deserialization and used ‘Time‘…
Premise In this post, I will briefly talk about testing your on-premises Microsoft exchange server is vulnerable to CVE-2021-26855,…