Introduction SANS EUROPEAN CTF 2026 is a Capture The Flag (CTF) competition organized by the SANS Institute, a renowned cybersecurity training organization. The event brings together cybersecurity enthusiasts, professionals, and students from around …
Introduction In this writeup, we will explore the solution to the “Baby Auth” Web challenge from HackTheBox. This challenge is designed to test our understanding of web authentication mechanisms and how to bypass them.
Target: …
Silentium HTB Machine Writeup Introduction Silentium is a challenging machine that requires a combination of web application exploitation and local privilege escalation techniques. The attack chain involves exploiting a password reset token …
Airtouch Writeup Introduction Airtouch is a medium difficulty machine on HackTheBox that simulates a wireless controller environment. The machine is set up with virtualized ethernet pairs and wireless interfaces, creating “air-gapped” networks that …
Facts Machine Writeup - Season 10 Introduction Facts is a easy-difficulty Linux machine on HackTheBox that simulates a web application environment with an underlying AWS S3 service. The machine is designed to provide a challenge that involves web …
Expressway Linux Easy Writeup Introduction Expressway is an easy-difficulty Linux machine on HackTheBox that simulates a real-world scenario involving a simple network setup. The machine is designed to provide a straightforward challenge for those …
Machine Description Headless is an easy-difficulty Linux machine that features a Python Werkzeug server hosting a website. The website has a customer support form, which is found to be vulnerable to blind Cross-Site Scripting (XSS) via the User-Agent …
WordPress - Discovery & Enumeration Continuing from where we left off in Part 1.
WordPress is extremely prevalent on the internet and presents a vast attack surface. We are guaranteed to come across WordPress during many of our External …
