Password-reuse

Sep 24, 2021  ·  6 min read

HackTheBox - Validation

Second-order SQL injection

Linux SQL-Injection Password-Reuse
Sep 16, 2021  ·  11 min read

HackTheBox - Schooled

Moodle exploitation using CVEs

FreeBSD CVE-2020-25627 CVE-2020-14321 Moodle
Jul 28, 2021  ·  9 min read

HackTheBox - Heist

Learn how RID cycling could be used for enumerating AD users

Windows Password-Spray Password-Reuse Procdump
Jun 26, 2021  ·  10 min read

HackTheBox - Spectra

Getting password from automatic login script of ChromeOS

Linux Chrome-OS WordPress Directory-Listing
Jun 14, 2021  ·  11 min read

HackTheBox - Tenet

Friendly PHP insecure deserialization attack and race condition

Linux WordPress PHP Deserialization