Posts
sidchn
Cancel
My OSCP Journey image

Introduction: In this blog post I’ll be talking about my PWK-OSCP journey. I will be sharing useful resources as well that were helpful for me in this journey. An OSCP has demonstrated the abi...

TryHackMe VulnNet - Roasted Writeup image

Overview: This windows box involves 3 Active Directory attacks AS-REP Roasting followed by Kerberoasting and finally a DC Sync to get the administrator NTLM hash. The box starts with us finding ou...

Hack The Box APT Writeup image

Overview: This windows box starts with us enumerating ports 80 and 135. We leak the ipv6 address of the box using IOXID resolver via Microsoft Remote Procedure Call. DCOM(Distributed Component Obj...

Hack The Box Doctor Writeup image

Overview: The box starts with us finding a python flask jinja 2 webapp on port 80 and we have splunk running on port 8089 , We perform a Server-Side Template Injection to get remote code execution...

Hack The Box Buff Writeup image

Overview: The box starts with us finding a Gym Management System web application, and using searchsploit we find there is an Unauthenticated File Upload Vulnerability and we get a shell on the box...

TryHackMe Ra Writeup image

Overview This windows box involved a lot of enumeration. It starts with us resetting an account via the poorly implemented reset password functionality on the web server.Then we are able to enum...

Hack The Box Tabby Writeup image

Overview: The box starts with us finding a Local File Inclusion Vulnerability on port 80 and we have tomcat running on port 8080 ,so we can use the LFI vulnerability to find credentials for tomcat...

Hack The Box Blackfield Writeup image

Overview: This windows box required a lot of enumeration and was focussed on Active Directory. It starts with us finding anonymous access to a smb share which had a lot of directories which turn o...