Code-review

Oct 15, 2022  ·  9 min read

HackTheBox - Forge

Bypass SSRF filters using domain redirection and abusing Python PDB

OSCP-Like Linux SSRF Vhost
Sep 12, 2021  ·  15 min read

HackTheBox - Gobox

SSTI in Golang, abuse S3 bucket, and NGINX backdoor

Linux S3 AWS LocalStack
Aug 06, 2021  ·  9 min read

HackTheBox - Ophiuchi

Deserialization attack on YAML and reversing web assembly

Linux YAML Deserialization Web-Assembly
Jun 14, 2021  ·  11 min read

HackTheBox - Tenet

Friendly PHP insecure deserialization attack and race condition

Linux WordPress PHP Deserialization
Jun 09, 2021  ·  12 min read

HackTheBox - Cereal (User)

Chaining XSS, SSRF, and deserialization vulnerabilities to get RCE

Windows Recover-Git DotNET Csharp
Jun 02, 2021  ·  9 min read

VulnHub - DC-9

DC-9 from VulnHub features a website that is vulnerable to SQL injection. I’m able to dump a bunch …

Linux Port-Knocking SQL-Injection LFI
May 09, 2021  ·  9 min read

HackTheBox - Time

Exploiting an insecure deserialization on Jackson library and how to mitigate it

Linux Jackson Java SSRF
Apr 24, 2021  ·  14 min read

HackTheBox - Bucket

Pentesting against simulated AWS S3 Bucket

Linux AWS LocalStack S3
Apr 02, 2021  ·  6 min read

HackTheBox - OpenAdmin

Exploiting OpenNetAdmin vulnerability and sudo nano

Linux Code-Review Webshell Password-Cracking