Tags » Pentesting

Hackthebox - Shocker Writeup

🐢“Knock, knock, you about to get shell shocked” 🐢

Shocker is the latest hackthebox machine to be retired, and as the name suggests, this machine requires us to exploit the Shellshock vulnerability.

451 more words

Creating Hashcat Keymap Walking Password Wordlists

Hashcat’s latest keymap walking tool, “KwProcessor”, quickly and easily generates password lists based on keymap walking techniques. In this article, the first of several password cracking themed articles, we will take a quick look at how to use this tool. 677 more words

Computer Security

Hackthebox - Mirai Writeup

Mirai was an interesting machine which looked simple enough, but was actually a bit more complex. Immediately what stands out is the name, Mirai, and gives us a nice hint on what we need to do/what the machine is about. 419 more words


Mr. Robot - Vulnhub Walkthrough

Machine link: https://www.vulnhub.com/entry/mr-robot-1,151/

This machine is based on the show Mr. Robot, and according to this post, it’s quite similar to OSCP boxes and intermediate level. 1,857 more words


MySQL UDF Exploitation


In the real world, while I was pentesting a financial institute I came across a scenario where they had an internal intranet and it was using MySQL 5.7 64-bit as the backend database technology. 2,016 more words


Kali Linux 2018 Released

Just a few months after the Kali 2017.3 release, Kali releases the new Kali 2018!

No immediately apparent cosmetic changes from the 2017 version, but some changes under the hood – A new Kernel (4.14.12) and several package updates: 133 more words

Kali Linux

Under the hoodie: what makes bug bounty hunters tick?

If you were a company interested in starting a bug bounty program – say, like Google did a few months ago in an effort to clean up the… 1,293 more words