home

AD

• The NoPAC Vulnerability
• Achieving Domain Compromise via the DCSync Technique [CHEATSHEET]

Active Directory

• The NoPAC Vulnerability
• Achieving Domain Compromise via the DCSync Technique [CHEATSHEET]

HTB

• HackTheBox SolarLab Walkthrough

Lateral Movement

• The NoPAC Vulnerability
• Achieving Domain Compromise via the DCSync Technique [CHEATSHEET]

PrivEsc

• Targeting python for Local Privilege Escalation

RCE

• Weaponizing the Groovy script console: Bindshells & base64 tool transfers

SSRF

• SSRF Vulnerability quick reference

Server-side Attacks

• SSRF Vulnerability quick reference

Writeup

• HackTheBox SolarLab Walkthrough

bind shell

• Weaponizing the Groovy script console: Bindshells & base64 tool transfers

chisel

• HackTheBox SolarLab Walkthrough

chroot

• Exploring CVE-2025-32463 local privilege escalation (chwoot) in Sudo

chwoot

• Exploring CVE-2025-32463 local privilege escalation (chwoot) in Sudo

cupp

• Writing Targeted Password lists with hashcat rules and cuppy

cve-2025-32463

• Exploring CVE-2025-32463 local privilege escalation (chwoot) in Sudo

cwes

• SSRF Vulnerability quick reference

dcsync

• Achieving Domain Compromise via the DCSync Technique [CHEATSHEET]

flask

• HackTheBox SolarLab Walkthrough

groovy

• Weaponizing the Groovy script console: Bindshells & base64 tool transfers

hashcat

• Writing Targeted Password lists with hashcat rules and cuppy

htb solarlab

• HackTheBox SolarLab Walkthrough

jenkins

• Weaponizing the Groovy script console: Bindshells & base64 tool transfers

liferay

• Weaponizing the Groovy script console: Bindshells & base64 tool transfers

lsass

• Post-Exploitation: Extracting Credentials from the Registry and LSASS

mimikatz

• Post-Exploitation: Extracting Credentials from the Registry and LSASS
• Achieving Domain Compromise via the DCSync Technique [CHEATSHEET]

nmap

• HackTheBox SolarLab Walkthrough

nopac

• The NoPAC Vulnerability

openfire

• HackTheBox SolarLab Walkthrough

owasp-top10

• SSRF Vulnerability quick reference

password-spray

• HackTheBox SolarLab Walkthrough

privilege escalation

• Exploring CVE-2025-32463 local privilege escalation (chwoot) in Sudo
• HackTheBox SolarLab Walkthrough

python

• Targeting python for Local Privilege Escalation

python imports

• Targeting python for Local Privilege Escalation

secretsdump

• Post-Exploitation: Extracting Credentials from the Registry and LSASS

smb

• HackTheBox SolarLab Walkthrough

sudo

• Exploring CVE-2025-32463 local privilege escalation (chwoot) in Sudo

web-exploitation

• SSRF Vulnerability quick reference

windows

• HackTheBox SolarLab Walkthrough

wordlists

• Writing Targeted Password lists with hashcat rules and cuppy