Blind SQL Injection With Python | OverTheWire Natas Level 15
We covered a scenario of blind SQL Injection where the web application accepts user input without sanitization or filtering….
CyberSecurity Articles
Buffer Overflow Explained | P22 | ROP Chains | HackTheBox HTB-Console
We covered another scenario of exploiting a binary vulnerable to buffer overflow. This scenario presented a binary that takes…
Microsoft DREAD Framework Explained | Threat Modeling | TryHackMe
We covered the Microsoft DREAD risk assessment Framework. DREAD is used widely to assess risks and threats using five…
SQL Injection | Bypassing Double Quotes | OverTheWire Natas Level 14
We covered a scenario of a login form vulnerable to SQL injection vulnerability. The source code allowed us to…
The MITRE ATT&CK Framework Explained | Threat Intelligence and Modeling | Part 1
We have explained the process of threat modeling and the related steps including scope definition, asset identification, threat research…
Buffer Overflow Exploitation with Radare2 | P21 | HackTheBox Reg
We covered another example of a vulnerable binary to buffer overflow vulnerability. The binary has NX enabled to prevent…
Log File Poisoning and Windows Privilege Escalation | HackTheBox Bart
We covered Log File Poisoning and Windows Privilege Escalation by exploiting the auto-logon in Windows which saves credentials in…
Internet of Things Devices | Remote Command Execution | TryHackMe Bugged
We covered working with internet of things devices, went over the MQTT protocol, demonstrated the publisher/subscriber model and performed…
Windows Active Directory Penetration Testing | P26 | HackTheBox Reel
We covered HackTheBox Reel machine which is part of pwn with Metasploit track. We demonstrated CVE-2017-0199 that is related…
Common Linux Persistence Techniques | TryHackMe Tardigrade
We covered three of the most common Linux persistence techniques such as writing commands in .bashrc file, scheduled tasks…