XML External Entity Injection Demonstration | HTB BountyHunter | CREST CRT Track
We covered a demo of XML External Entity Injection along with privilege escalation through exploiting Python eval…
CREST CRT track
Windows Privilege Escalation with PowerUp | HackTheBox Remote | CREST CRT Track
We covered HackTheBox Remote machine as part of CREST CRT (Registered Penetration Tester) Track. We demonstrated Umbraco…
Docker Privilege Escalation and SSTI Exploitation | HackTheBox GoodGames
We covered HackTheBox GoodGames as part of CREST CRT track. We went over SQL Injection, server side…
Windows Active Directory Exploiting Group Policy Preferences | HackTheBox Active
We covered HackTheBox Active as part of CREST CRT (registered penetration tester track). We went through Exploiting…
Python Privilege Escalation | HackTheBox Cap | CREST CRT Track
We covered Insecure Direct Object Reference vulnerability exploitation along with Python privilege escalation as part of HackTheBox…
DNS Zone Transfer and Python Privilege Escalation | HackTheBox FriendZone
We covered HackTheBox FriendZone as part of CREST CRT track. We went over DNS zone transfer, SMB…