xRDP Setup and Configuration

Installing xRDP, configuring Polkit rules and fixing the default theme.

May 13, 2025

Library

Brute forcing SSH access and escalating using a poorly configured sudo rule

December 27, 2024

CyberLens

Exploiting Apache Tika 1.17 with MetaSploit and abusing `AlwaysInstallElevated` to escalate to SYSTEM

December 26, 2024

TryHack3M: Bricks Heist

Exploiting Wordpress v1.9.5 (CVE-2024-25600) and blockchain forensics

December 19, 2024

Pyrat

RCE through an open port which executes Python code, finding credentials in a Git config file and brute forcing a Python service

December 17, 2024

Lookup

Using FFUF to brute force a user name and password and abusing a binary to read files as root

December 16, 2024

The Sticker Shop

Basic XSS in through a form

December 16, 2024

LinkVortex

Finding a dev subdomain with a git repo, getting credentials from the git repo, abusing a CVE in Ghost CMS to read files and finding more credentials. Getting root through an bash script and a double symlink

December 7, 2024

Whiterose

Vhost fuzzing, Server-side template injection (STTI) for EJS and privilege escalation through sudoedit

November 8, 2024

Cicada

Ldap search for users and smb enum. User has SeBackupPrivilege and SeRestorePrivilege to backup the ntds.dit and system hive

October 16, 2024