Silentium HTB Machine Writeup Introduction Silentium is a challenging machine that requires a combination of web application exploitation and local privilege escalation techniques. The attack chain involves exploiting a password reset token …
Airtouch Writeup Introduction Airtouch is a medium difficulty machine on HackTheBox that simulates a wireless controller environment. The machine is set up with virtualized ethernet pairs and wireless interfaces, creating “air-gapped” networks that …
Facts Machine Writeup - Season 10 Introduction Facts is a easy-difficulty Linux machine on HackTheBox that simulates a web application environment with an underlying AWS S3 service. The machine is designed to provide a challenge that involves web …
Expressway Linux Easy Writeup Introduction Expressway is an easy-difficulty Linux machine on HackTheBox that simulates a real-world scenario involving a simple network setup. The machine is designed to provide a straightforward challenge for those …
Machine Description Headless is an easy-difficulty Linux machine that features a Python Werkzeug server hosting a website. The website has a customer support form, which is found to be vulnerable to blind Cross-Site Scripting (XSS) via the User-Agent …
WordPress - Discovery & Enumeration Continuing from where we left off in Part 1.
WordPress is extremely prevalent on the internet and presents a vast attack surface. We are guaranteed to come across WordPress during many of our External …
Introduction to Attacking Common Applications Web applications are interactive applications that can be accessed via web browsers. Web applications typically adopt a client-server architecture to run and handle interactions. They usually are made up …
Hugo vs Jekyll: an Epic Battle of Static Site Generator Themes I recently took on the task of creating a documentation site theme for two projects. Both projects needed the same basic features, but one uses Jekyll while the other uses Hugo.
In …
