Unbalanced was a hard rated machine on HackTheBox which involved retrieving files from rsync and decrypting the contents after which we use the squid proxy to access an internal network with multip...

This post has 3 writeups for the 3 easy pwn challenges on CTFLearn. Simple BOF Code Exploitation RIP my BOF GDB Exploit Lazy Game Challenge...

SneakyMailer is a medium rated Linux machine which involves using phishing attacks to gain a users credentials using which we are able to log into their mail account which reveals the credentials f...

https://tryhackme.com/room/bookstoreoc Book store is a medium rated machine on TryHackMe that involves doing some basic web enumeration, fuzzing the REST API to find a parameter that is vulnerable...

Blackfield is a hard windows machine that involves initially gaining access as anonymous user to the profiles$ share and using all the usernames with GetSPNUsers.py giving us the hash for the user ...

Gaming server is a easy machine which requires some basic enumeration to find a username in the page’s source and doing some dirbusting to find a encrypted ssh-key and a password list which is used...

A list of rooms that I have come accross + more reccomended by others that are a good pre oscp prep. Paths Offensive Security Path - Unsurprisingly this one makes it on the list as the Offensi...

Brainpan is a fun linux machine on tryhackme that is running a windows binary vulnerable to a OSCP-like buffer overflow attack. Following the attack we can gain an initial foothold on the machine a...

Lian yu is a beginner level room on tryhackme based around the TV show The Green Arrow. This machine requires a lot of fuzzing, stego and sudo privilege abuse Nmap The nmap scan reveals the follo...

This is my first write-up for the box Daily-Bugle on tryhackme.com/room/dailybugle NMAP Running an nmap scan on the machine reveals the following: Gobuster Upon running gobuster we find that ...