Vulnlab - VulnEscape Writeup
๐พ Machine OverviewThis is a writeup of the machine VulnEscape from VulnLab (now HTB), itโs an easy difficulty Windows machine thatโs focused on Kiosk breakouts. This box was a lot of fun; had real...HTB - Shibboleth Writeup
๐พ Machine OverviewThis is a writeup of the machine Shibboleth from HTB, itโs a Medium difficulty Linux machine which featured IPMI hash retrieval, a Zabbix CVE, and a MariaDB CVE. ๐ EnumerationAn...HTB - Facts Writeup
๐พ Machine OverviewThis is a writeup of the machine Facts from HTB, itโs an easy difficulty Linux machine which featured a CVE in Camaleon CMS, S3 Bucket enumeration, SSH Key shenanigans, and some ...PacketHuffer: Making Sense of Kismet Data
The primary motivations of PacketHuffer are to ease the struggle of dealing with multiple Kismet captures, implement out of the box rules/detections for items of interest a-la BloodHound, and add flexibility for the easy viewing and analysis of wireless recon data. PacketHuffer takes information from batches of kismet files, extracts the wireless devices, and provides a de-duplicated/concise view of identified networks.
Vulnlab - Tengu Writeup
๐พ Machine OverviewThis is a writeup of the chain Tengu from VulnLab, itโs a medium difficulty Windows chain which featured NodeRED exploitation, pivoting, and some standard AD attacks. ๐ Enumerat...Vulnlab - Tea Writeup
๐พ Machine OverviewThis is a writeup of the chain Tea from VulnLab, itโs a medium difficulty Windows chain which featured CI/CD pipeline exploitation, LAPS2, and WSUS. ๐ EnumerationAn initial...A Student-Run Pentest: CCSO X HAX
My first 7 CVEs; Organizing and running a student-run pentest of the HAX CMS webapp.
๐ง๐ WarWandering: Pt 2
Part two of my wardriving project. Ingesting Kismet data into Elastic for analysis and Visualization.
Vulnlab - Trusted Writeup
๐พ Chain OverviewThis is a writeup of the chain Trusted from VulnLab. This chain was a lot of fun and dealt with some common web attacks, DLL hijacking, and AD trust exploitation. ๐ EnumerationI s...Vulnlab - Baby2 Writeup
๐พ Machine OverviewThis is a writeup of the machine Baby2 from VulnLab, itโs a Medium difficulty Windows machine which features some fun with logon scripts, as well as some basic AD and GPO abuse. ...
