Introduction: Unmasking Subtle Vulnerabilities in a Financial Onboarding Platform Assalamu Alaikum! I’m Nasur Ullah, an OSCP-certified penetration tester operating from Pakistan, with a profound i...

Machine Type: Linux Attack Walkthrough Step 1: Service Enumeration with Nmap Starting Nmap 7.94SVN ( https://nmap.org ) at 2024-10-27 07:21 EDT Warning: 192.168.248.42 giving up on port because ...

Introduction Assalamu Alaikum! This is Nasur Ullah. I’m currently an undergrad student and a passionate Webapp security learner from Pakistan. This is my first write-up and I’ll be sharing how I ...

I solved some web challenges with my idol ginoah. The challenges are awesome! Description: Can you read my secret? The goal is to LFI /flag.txt This flask app use curl to get a local file This...

Table of Contents Discovery Privilege Escalation Defense Evasion Credential Dumping Lateral Movement Persistence Defense & Detection Discovery SPN Scanning SPN Scanning – ...

nmap ┌[spy0x7㉿pop-os]─[/home/spy0x7/Desktop/ctf/htb/RouterSpace] └╼[★]$nmap -sC -sV -oA nmap 10.10.11.148 Starting Nmap 7.60 ( https://nmap.org ) at 2022-03-05 21:36 PKT Nmap scan report for 10.1...

nmap root@kali:~/ctfs/thm/archangle# nmap -sC -sV 10.10.43.206 Starting Nmap 7.80 ( https://nmap.org ) at 2021-02-04 14:01 EST Nmap scan report for mafialive.thm (10.10.169.125) Host is up (0.22s...

Subdomain Enumeration Discovering Target Using ASN (IP Blocks) https://spyse.com/ https://dnsdumpster.com/ http://reverseip.domaintools.com/ https://securityheaders.io/ http://threatcr...

Introduction My intention is to make a full and complete list of Vulnerability bounty write-up and resources and let Bug Bounty Hunter to use this page as a reference when they want to gain some i...

nmap spy0x7@root:~/ctfs/htb/Seal▶ → nmap -A -sS -sC -sV -p- 10.10.10.250 Starting Nmap 7.91 ( https://nmap.org ) at 2021-07-12 12:42 CST Nmap scan report for 10.10.10.250 Host is up (0.24s latency...