Docker Vulnerabilities Part Two | Escaping Docker Containers Shell
We covered two methods to escape docker containers including the method of mounting the full host file…
CyberSecurity Articles
Understanding Secure Network Architecture Design | TryHackMe
We covered secure network architecture design concepts such as VLANs, security zones, access control lists, DNS snooping…
Blockchain Penetration Testing P1 | HackTheBox Survival Of The Fittest
We covered an introduction to blockchain penetration testing by taking on a blockchain challenge from HackTheBox where…
Demonstrating Session Hijacking & Linux Privilege Escalation | TryHackMe Hijack
We covered a boot to root machine where we started with an Nmap scan to discover several…
Memory Forensics with Volatility | Uncovering Malware Hidden in Emails | HackTheBox Reminiscent
We covered an incident response scenario that involved a using memory forensics to investigate the presence of…
Time Based SQL Injection | OverTheWire Natas Level 17
We covered time based SQL injection using the sleep function. Time time based SQL injection relies in…
Vulnerability Management Explained | Scanning Vulnerabilities with OpenVas | TryHackMe
We covered vulnerability management, vulnerability scanning, vulnerability management frameworks and the lifecycle of a vulnerability management program…
Escaping Docker Containers Using Linux Capabilities | TryHackMe The Docker Rodeo
We covered the fifth part of exploiting Docker containers. We discussed one of the popular methods of…
Escaping Web Server Docker Container with SSRF | TryHackMeThe Great Escape
We covered a Docker container running a web server that is vulnerable to server side request forgery….
Exploiting Docker Container with E-Commerce Website | TryHackMe The Marketplace
We demonstrated gaining root access to a docker container running a web server with an SQL database….
Printer Exploitation | Part one | HackTheBox Gawk
We covered the concept of printer exploitation using printer exploitation framework. The scenario involved a printer running…
Format String Vulnerability Explained | HackTheBox Leet Test
We covered a binary vulnerable to format string vulnerability in which the vulnerable code contains an implementation…
Information Security Risk Management Explained | TryHackMe
We covered risk management process and its components and frameworks. We explained the different steps taken to…
CVE-2023-4911 Looney Tunables | Linux Local Privilege Escalation
We covered and explained CVE-2023-4911 Looney Tunables that affects mostly all Linux distributions and allows an attacker…
Bypassing SQL Filters Using Command Substitution | OverTheWire Natas Level 16
We covered OverTheWire Natas Level 16 CTF where we went over a blind SQL injection scenario that…
PASTA Framework Explained | Threat Modeling | TryHackMe
We covered the PASTA (Process for Attack Simulation and Threat Analysis) framework for risk assessment and threat…
Buffer Overflow Explained | P23 | Stack Pivot and Ret2libc | HackTheBox Pwnshop
We covered another case of a binary vulnerable to buffer overflow but has some protections enabled such…
Microsoft STRIDE Framework Explained | Threat Modeling | TryHackMe
We covered the STRIDE framework developed by Microsoft for threat modeling. STRIDE framework categorizes threats into 6…
Blind SQL Injection With Python | OverTheWire Natas Level 15
We covered a scenario of blind SQL Injection where the web application accepts user input without sanitization…
Buffer Overflow Explained | P22 | ROP Chains | HackTheBox HTB-Console
We covered another scenario of exploiting a binary vulnerable to buffer overflow. This scenario presented a binary…