Hardware Hacking P2 | Logic Analyzers | HackTheBox Debugging Interface
We covered another hardware hacking challenge where we demonstrated an analysis of an archived file that was…
HackTheBox Walkthrough
Hardware Hacking P1 | Linux Squashfs Images | HackTheBox Photon Lockdown
We covered the first hardware hacking challenge where we inspected a rootfs image and using the appropriate…
Blockchain Penetration Testing P1 | HackTheBox Survival Of The Fittest
We covered an introduction to blockchain penetration testing by taking on a blockchain challenge from HackTheBox where…
Memory Forensics with Volatility | Uncovering Malware Hidden in Emails | HackTheBox Reminiscent
We covered an incident response scenario that involved a using memory forensics to investigate the presence of…
Printer Exploitation | Part one | HackTheBox Gawk
We covered the concept of printer exploitation using printer exploitation framework. The scenario involved a printer running…
Format String Vulnerability Explained | HackTheBox Leet Test
We covered a binary vulnerable to format string vulnerability in which the vulnerable code contains an implementation…
Buffer Overflow Explained | P23 | Stack Pivot and Ret2libc | HackTheBox Pwnshop
We covered another case of a binary vulnerable to buffer overflow but has some protections enabled such…
Buffer Overflow Explained | P22 | ROP Chains | HackTheBox HTB-Console
We covered another scenario of exploiting a binary vulnerable to buffer overflow. This scenario presented a binary…
Buffer Overflow Exploitation with Radare2 | P21 | HackTheBox Reg
We covered another example of a vulnerable binary to buffer overflow vulnerability. The binary has NX enabled…
Log File Poisoning and Windows Privilege Escalation | HackTheBox Bart
We covered Log File Poisoning and Windows Privilege Escalation by exploiting the auto-logon in Windows which saves…
Windows Active Directory Penetration Testing | P26 | HackTheBox Reel
We covered HackTheBox Reel machine which is part of pwn with Metasploit track. We demonstrated CVE-2017-0199 that…
Command Injection & SQL Injection | HackTheBox Looking glass & Sanitize | OWASP TOP 10
We covered Command Injection & SQL Injection which are in the OWASP TOP 10 list of vulnerabilities….
Broken Authentication | HTB OWASP TOP 10 – P2
We covered broken authentication, session hijacking and information disclosure as part of HTB OWASP TOP 10 track…
XML External Entity Injection | HackTheBox baby WAFfles order
We covered a simple demonstration of XML External Entity Injection vulnerability which is part of OWASP Top…
XML External Entity Injection Demonstration | HTB BountyHunter | CREST CRT Track
We covered a demo of XML External Entity Injection along with privilege escalation through exploiting Python eval…
Windows Privilege Escalation with PowerUp | HackTheBox Remote | CREST CRT Track
We covered HackTheBox Remote machine as part of CREST CRT (Registered Penetration Tester) Track. We demonstrated Umbraco…
Docker Privilege Escalation and SSTI Exploitation | HackTheBox GoodGames
We covered HackTheBox GoodGames as part of CREST CRT track. We went over SQL Injection, server side…
Windows Active Directory Exploiting Group Policy Preferences | HackTheBox Active
We covered HackTheBox Active as part of CREST CRT (registered penetration tester track). We went through Exploiting…
Python Privilege Escalation | HackTheBox Cap | CREST CRT Track
We covered Insecure Direct Object Reference vulnerability exploitation along with Python privilege escalation as part of HackTheBox…
DNS Zone Transfer and Python Privilege Escalation | HackTheBox FriendZone
We covered HackTheBox FriendZone as part of CREST CRT track. We went over DNS zone transfer, SMB…
