TECHNICAL

WriteUp-TryHackMe-ICE

Learn how to exploit a vulnerable media server and gain root access.

INFOSEC

Secjuice Squeeze Volume 39

Welcome to the Secjuice Squeeze, a curated selection of interesting infosec articles and news that you may have missed. Now with upcoming events!

Tor In 2020, What Changed?

Tor was published back in 2002, which means that's it's finally 18 years old. But what's the status quo of Tor?

TECHNICAL

HTB Admirer Walkthrough

A technical walk through of the 'Admirer' box on HackTheBox.

CTF Series: Mr Robot

Learn how to capture hidden flags on this Mr Robot themed target machine by exploiting different types of vulnerabilities.

INFOSEC

Secjuice Squeeze Volume 38

Welcome to the Secjuice Squeeze, a curated selection of interesting infosec articles and news that you may have missed. Now with upcoming events!

TECHNICAL

Vulnhub Kioptrix #5

Exploitation of a vulnerable Free BSD OS machine, and rooting it by escalating privileges.

INFOSEC

Secjuice Squeeze Volume 37

Welcome to the Secjuice Squeeze, a curated selection of interesting infosec articles and news that you may have missed. Now with upcoming events!

TECHNICAL

THM-Writeup-BOLT

Learn to exploit a vulnerable CMS (Content Management System) using Remote Code Execution.

OSINT

OSINT & The Intelligence Cycle Part III: Processing Raw Intelligence

This OSINT part 3 post explains how to take the raw intelligence and refines it into forms better suited for exploitation and analysis.

INFOSEC

EncroChat - Another Sad Day for Privacy & Encryption

Let's discuss the privacy and encryption concerns related to the new EncroChat provider.

INFOSEC

Windows 10 as a pentest OS

Well, you might be surprised, especially if you're a die-hard GNU/Linux user like me, that you can actually use Windows 10 as a penetration testing operating system!

INFOSEC

Advanced boolean-based SQLi filter bypass techniques

Learn how to bypass filters and Application Firewall rules using MySQL String Functions, Regex Functions, Conditional Select and Set Variables to exploit a blind (boolean-based) SQL Injection vulnerability.

OSINT

OSINT & The Intelligence Cycle Part II: Lets Talk About Collection

Part two of my guide to the OSINT intelligence cycle. Once you mapped out your planning and direction phase, the next step is collection.

TECHNICAL

HTB Magic Walkthrough

A technical walk through of the 'Magic' box on HackTheBox.

TECHNICAL

HTB Remote WalkThrough

Welcome to my HTB Remote walk through, I found this to be a challenging machine despite other users rating this as simple!

TECHNICAL

A Brief Introduction To XSS

An introduction to cross-site scripting (XSS), including the basics, the methodology, the dangers and mitigations against XSS attacks.

TECHNICAL

THM Kenobi Write Up

Learn to exploit and take over a vulnerable Linux based machine with the 'Kenobi' room on TryhackMe.

CYBERSEC

Autonomous Vehicle Cybersecurity

Self driving cars are one of the most heavily anticipated innovations of the 21st century, but the potential cybersecurity risks cannot be ignored.

OSINT

The OSINT Intelligence Cycle Part 1: Planning and Direction

My advice for those wishing to improve their OSINT skills is to go back to the basics, namely the intelligence cycle.

INFOSEC

Secjuice Squeeze Volume 36

Welcome to the Secjuice Squeeze, a curated selection of interesting infosec articles and news that you may have missed. Now with upcoming events!

TECHNICAL

TryHackMe WriteUp: Linux Challenges

This write-up goes through finding flags on a Linux Machine using different commands, services, and tools found in Linux Operating System.

INFOSEC

Risk Management Framework (RMF) Can Help You Develop A Secure System

An overview of the Risk Management Framework (RMF) and its components.

CYBERSEC

AWS CDK vs Serverless Framework

Let's compare Serverless Framework and AWS CDK for framework ease of use, extensibility, and security.

TECHNICAL

HTB Quick Walkthrough

A technical walk through of the HackTheBox Quick box.