Session ID Hijacking With Python | OverTheWire Natas 19-20
We covered OverTheWire Natas 19-20 level. This level was similar to the previous level but with the…
CTF Writeups
Hardware Hacking P3 | Linux Firmware Analysis | HackTheBox The Needle
We covered the hardware hacking challenge from HackTheBox The Needle where we analyzed a Linux firmware using…
Using Burp Suite for Session Hijacking | OverTheWire Natas Level 18 – 19
We used Burp Suite to demonstrate an experiment on enumerating sessions IDs created using PHP language. The…
Hardware Hacking P2 | Logic Analyzers | HackTheBox Debugging Interface
We covered another hardware hacking challenge where we demonstrated an analysis of an archived file that was…
Hardware Hacking P1 | Linux Squashfs Images | HackTheBox Photon Lockdown
We covered the first hardware hacking challenge where we inspected a rootfs image and using the appropriate…
Oracle Database Exploitation with Metasploit | HackTheBox Silo | Pwn with Metasploit
We covered Oracle Database Exploitation with Metasploit framework and oracle database attacking tool as part of Pwn…
Blockchain Penetration Testing P1 | HackTheBox Survival Of The Fittest
We covered an introduction to blockchain penetration testing by taking on a blockchain challenge from HackTheBox where…
Memory Forensics with Volatility | Uncovering Malware Hidden in Emails | HackTheBox Reminiscent
We covered an incident response scenario that involved a using memory forensics to investigate the presence of…
Time Based SQL Injection | OverTheWire Natas Level 17
We covered time based SQL injection using the sleep function. Time time based SQL injection relies in…
Printer Exploitation | Part one | HackTheBox Gawk
We covered the concept of printer exploitation using printer exploitation framework. The scenario involved a printer running…
Format String Vulnerability Explained | HackTheBox Leet Test
We covered a binary vulnerable to format string vulnerability in which the vulnerable code contains an implementation…
Bypassing SQL Filters Using Command Substitution | OverTheWire Natas Level 16
We covered OverTheWire Natas Level 16 CTF where we went over a blind SQL injection scenario that…
Buffer Overflow Explained | P23 | Stack Pivot and Ret2libc | HackTheBox Pwnshop
We covered another case of a binary vulnerable to buffer overflow but has some protections enabled such…
Blind SQL Injection With Python | OverTheWire Natas Level 15
We covered a scenario of blind SQL Injection where the web application accepts user input without sanitization…
Buffer Overflow Explained | P22 | ROP Chains | HackTheBox HTB-Console
We covered another scenario of exploiting a binary vulnerable to buffer overflow. This scenario presented a binary…
SQL Injection | Bypassing Double Quotes | OverTheWire Natas Level 14
We covered a scenario of a login form vulnerable to SQL injection vulnerability. The source code allowed…
Buffer Overflow Exploitation with Radare2 | P21 | HackTheBox Reg
We covered another example of a vulnerable binary to buffer overflow vulnerability. The binary has NX enabled…
Log File Poisoning and Windows Privilege Escalation | HackTheBox Bart
We covered Log File Poisoning and Windows Privilege Escalation by exploiting the auto-logon in Windows which saves…
Internet of Things Devices | Remote Command Execution | TryHackMe Bugged
We covered working with internet of things devices, went over the MQTT protocol, demonstrated the publisher/subscriber model…
Windows Active Directory Penetration Testing | P26 | HackTheBox Reel
We covered HackTheBox Reel machine which is part of pwn with Metasploit track. We demonstrated CVE-2017-0199 that…