Latest Blog Posts
GoodGames Writeup - Hack The Box
Exploiting SQL injection and SSTI vulnerabilities for initial access, then using Docker escape for privilege escalation
Read more
Alert Writeup - Hack The Box
Performing XSS, Arbitrary File Read and Password cracking to get initial access, and then monitoring the processes to escalate privileges
Read more
Cronos Writeup - Hack The Box
Performing SQL and command injection to exploit cron jobs
Read more
BountyHunter Writeup - Hack The Box
Performing XXE injection on the BountyHunter machine on Hack The Box.
Read more
Bashed Writeup - Hack The Box
Exploring the Bashed machine on Hack The Box.
Read more