Recent Posts

TryHackMe: Moebius

17 minute read

This box is rated hard difficulty on THM. It involves us exploiting SQL injection to extract an HMAC-SHA256 signing secret, allowing us to perform a PHP filt...

TryHackMe: RazorBlack

7 minute read

This box is rated medium difficulty on THM. It involves us exploiting plenty of Active Directory components to pivot through accounts and find grab a remote ...

HackTheBox: Intentions

14 minute read

This box is rated hard difficulty on HTB. It involves us grabbing Bcrypt hashes through second-order SQL injection, getting RCE on the site via the Imagick P...

TryHackMe: Mountaineer

15 minute read

This box is rated hard difficulty on THM. It involves us finding a Wordpress application that’s vulnerable to LFI, allowing us to read the server’s configura...

TryHackMe: Mnemonic

8 minute read

This box is rated medium difficulty on THM. It involves us brute forcing a few protected files to gain SSH access to the box as a low-level user. Then, we re...

HackTheBox: StreamIO

15 minute read

This box is rated medium difficulty on HTB and took me a very long time to complete. It involves us dumping the website’s database via MSSQL injection, explo...

HackTheBox: Blackfield

7 minute read

This box is rated hard difficulty on HTB. It involves us enumerating valid users via SMB guest authentication and AS-REP roasting a support account which giv...

TryHackMe: Mindgames

4 minute read

This box is rated medium difficulty on THM. It involves us using a lesser-known programming language to grab a reverse shell on the web server, along with es...

TryHackMe: Temple

12 minute read

This box is rated hard difficulty on THM. It involves us enumerating a python webapp to find an old register API. Then, we grab a shell on the box with SSTI ...

TryHackMe: Sea Surfer

14 minute read

This box is rated hard difficulty on THM. It involves us chaining SSRF to an LFI vulnerability in order to read files on the web server. Doing so gives us ad...