Network Enumeration with Nmap Nmap is one of the most used tools by network admins and IT security specialists, it can be used to Audit the security aspects of networks, simulate penetration tests...
Certified Red Team Professional Notes
Certified Red Team Professional Notes Week 1 • Enumerate useful information like users, groups, group memberships, computers, user properties, trusts, ACLs etc. to map attack paths! • Learn and...
Nibbles
Nibbles is an easy level Linux machine on HacktheBox. We start by getting a foothold by guessing user credentials for a blog site, and finding out we can upload and execute arbitrary PHP files. Usi...
Port Swigger Academy Notes
SQL Injection What is SQL Injection SQL injection is a vulnerability which allows an attacker to interfere with the queries that an application makes to its database. An attacker can exploit this...
Getting ChatGPT to Write Malware with False Pretenses
So recently I was looking into a keylogger script written by my brother, and I was wondering if I could recreate a similar script using chatGPT. Obviously, the creators of this AI tool do not want ...
Active
Active is an easy level Windows machine on HacktheBox which starts with enumerating an SMB share on a domain controller to find an encrypted gpp password, which we can decrypt and get access to the...
Shocker
Shocker is a fun easy level linux machine on HacktheBox which features the shellshock exploit to get a foothold on the box, and from there we escalate privileges by abusing sudo privileges in perl....
Bastion
Bastion is a straight forward easy-level machine on HacktheBox that starts with enumerating a .vhd backup file that we mounted from an SMB share through anonymous login, from there we dump the user...
Querier
Querier is a medium level machine on HacktheBox that starts with discovering database credentials in the macros of a xlsm file on a network share. We can then login to the database as a low privele...
The Way of the Console Cowboy
Tips and Tricks for Navigating Linux tmux Tmux is a powerful screen multiplexer, meaning it lets you handle multiple panes in a command line interface, which is super useful for sys-admin tasks, ...