Tools

• Feb 3, 2025 Automating Kali VM Setup with QEMU and Ansible
• Nov 13, 2024 LDAPire: LDAP Enumeration Tool
• Oct 17, 2024 BloodServer: A Secure File Transfer Tool for Penetration Testers

Walkthroughs

• Jan 12, 2025 RedPanda HTB Walkthrough
• Dec 26, 2024 Sau HTB Walkthrough
• Dec 24, 2024 Love HTB Walkthrough
• Dec 22, 2024 Editorial HTB Walkthrough
• Dec 21, 2024 Doctor HTB Walkthrough
• Nov 15, 2024 Forest HTB Walkthrough
• Nov 12, 2024 Driver HTB Walkthrough
• Nov 11, 2024 Timelapse HTB Walkthrough
• Nov 6, 2024 Certified HTB Walkthrough
• Nov 5, 2024 Aero HTB Walkthrough
• Nov 3, 2024 Sauna HTB Walkthrough
• Nov 2, 2024 Active HTB Walkthrough
• Nov 1, 2024 Cicada HTB Walkthrough
• Oct 31, 2024 Authority HTB Walkthrough
• Oct 22, 2024 EvilCUPS HTB Walkthrough
• Oct 21, 2024 Resolute HTB Walkthrough
• Oct 18, 2024 Fuse HTB Walkthrough
• Oct 16, 2024 Cascade HTB Walkthrough
• Oct 14, 2024 Monteverde HTB Walkthrough
• Oct 13, 2024 Outdated HTB Walkthrough
• Oct 9, 2024 Scrambled HTB Walkthrough
• Oct 3, 2024 Hospital HTB Walkthrough
• Sep 29, 2024 Intelligence HTB Walkthrough
• Sep 22, 2024 Manager HTB Walkthrough
• Sep 12, 2024 Access HTB Walkthrough
• Sep 9, 2024 Remote HTB Walkthrough
• Sep 6, 2024 Support HTB Walkthrough
• Sep 1, 2024 Return HTB Walkthrough

Articles

• Nov 15, 2024 Understanding AS-REP Roasting Attacks: A Deep Dive
• Nov 11, 2024 Understanding PowerShell Download Cradles: A Deep Dive
• Nov 5, 2024 Understanding CVE-2023-28252: Deep Dive into the CLFS Privilege Escalation Vulnerability
• Nov 5, 2024 Understanding CVE-2023-38146: Deep Dive into the ThemeBleed Vulnerability
• Oct 22, 2024 Understanding the CUPS Exploit Chain: A Deep Dive into CVE-2024-4176, CVE-2024-4175, CVE-2024-4177 and CVE-2024-4076
• Oct 21, 2024 Understanding the NoPac Exploit: A Deep Dive into CVE-2021-42278 and CVE-2021-42287
• Oct 20, 2024 Understanding SeLoadDriverPrivilege Escalation: A Deep Dive
• Oct 14, 2024 Understanding Azure AD Connect Exploitation & Privilege Escalation
• Oct 11, 2024 Understanding the Shadow Credentials Attack Vector
• Oct 10, 2024 Understanding .NET Deserialization Exploits: A Deep Dive

Cheatsheets

• Oct 16, 2024 Attacking LDAP: Deep Dive & Cheatsheet
• Oct 16, 2024 Attacking RPC: Deep Dive & Cheat Sheet