Latest Blog Posts
Help Writeup - Hack The Box
Exploiting GraphQL endpoint and HelpDeskZ vulnerabilities for initial access, then using a kernel exploit for privilege escalation
Read more
Reset Writeup - Hack The Box
Exploiting log poisoning and Rservices for initial access, then abusing a tmux session and nano sudo permissions for privilege escalation
Read more
Usage Writeup - Hack The Box
Exploiting SQL injection and password cracking for initial access, then analyzing a binary for privilege escalation
Read more
Editorial Writeup - Hack The Box
Exploiting SSRF for initial access, then using a GitPython vulnerability for privilege escalation
Read more
Headless Writeup - Hack The Box
Exploiting XSS and command injection vulnerabilities for initial access, then abusing sudo privileges for privilege escalation
Read more