Docker Privilege Escalation and SSTI Exploitation | HackTheBox GoodGames
We covered HackTheBox GoodGames as part of CREST CRT track. We went over SQL Injection, server side…
CyberSecurity Articles
Windows Active Directory Exploiting Group Policy Preferences | HackTheBox Active
We covered HackTheBox Active as part of CREST CRT (registered penetration tester track). We went through Exploiting…
Python Privilege Escalation | HackTheBox Cap | CREST CRT Track
We covered Insecure Direct Object Reference vulnerability exploitation along with Python privilege escalation as part of HackTheBox…
DNS Zone Transfer and Python Privilege Escalation | HackTheBox FriendZone
We covered HackTheBox FriendZone as part of CREST CRT track. We went over DNS zone transfer, SMB…
Linux Privilege Escalation Through X11 Authorization | HackTheBox Squashed
We enumerate NFS shares, and upload a Web Shell . We also performed Linux privilege escalation by…
Demonstrating XSS,RCE and PostgreSQL Exploitation | HackTheBox Red Cross
RedCross From HackTheBox was like a maze, with several different paths to achieve shell and root. We’ll…
Understanding The Bypass Of File Upload Extension Filters P10 | TryHackMe Opacity
TryHackMe Opacity is an easy machine that can help you in the penetration testing learning process. We…
Active Directory Penetration Testing | TryHackMe Services
We come upon a website that lists some fictional firm employees’ entire names. We create some usernames…
Security Management Concepts Explained | TryHackMe
We covered information security management concepts such as information security governance, information security regulations, risk management and…
File Upload Vulnerabilities P12 | OverTheWire Natas 13
We covered another file upload vulnerability where the vulnerable code contained a PHP function exif_imagetype to check…
Encryption and Secure Remote Access | Linux Hardening TryHackMe
We explored encryption and secure remote access as methods to secure and harden Linux. Encryption makes data…
Firewalls in Linux | Iptables and UFW | TryHackMe Linux Hardening P2
We covered a basic introduction to Linux firewalls IPTABLES and UFW as a means to ensure security….
User Accounts Security in Linux | TryHackMe Linux System Hardening
We covered User Accounts Security best practices such as disabling root account login, setting password expiry date,…
Linux System Enumeration | Information Gathering | TryHackMe
We covered Linux enumeration to identify possible weaknesses vulnerabilities in order to achieve privilege escalation. This was…
Dynamic Malware Analysis with Process Monitor | TryHackMe
We covered basic dynamic malware analysis using process monitor to uncover network connections, processes spawned by the…
Dynamic Malware Analysis with API Logging and Monitoring | TryHackMe
We covered Dynamic Malware Analysis using API Calls monitoring and logging using tools such as API Logger…
Dynamic Malware Analysis with Process Explorer | TryHackMe
We covered dynamically analyzing malware using process explorer to discover DLLs, handles, resource consumption, network activity and…
Identity and Access Management Explained | TryHackMe
We covered managing identities and access through identification, authentication, authorization and accountability. We also covered every single…
Dynamic Malware Analysis with Regshot | TryHackMe
We covered dynamic malware analysis by analyzing and comparing changes and modifications done on the registry using…
Cyber Incident Investigation with Linux Forensics | TryHackMe Disgruntled
We covered using Linux forensics to investigate a cyber incident. We covered reading and extracting evidence from…